The support for priority signaling has been removed in nghttp2, following its deprecation in the RFC 9113. As a consequence of this, priority signaling is deprecated on all release lines of Node.js, and removed from Node.js 24 so we can include latest updates from nghttp2.

Contributed by Matteo Collina and Antoine du Hamel in #58293.

Boolean value available in ECMAScript modules, which can be used to detect whether the current module was the entry point of the current process.

export function foo() {
  return 'Hello, world';
}

function main() {
  const message = foo();
  console.log(message);
}

if (import.meta.main) main();
// `foo` can be imported from another module without possible side-effects from `main`

Contributed by Joe and Antoine du Hamel in #57804.

• [e13930bbe0] - doc: add Filip Skokan to TSC (Rafael Gonzaga) #58499
• [984894b38c] - doc: deprecate util.isNativeError in favor of Error.isError (Miguel Marcondes Filho) #58262
• [d261274b0f] - doc: deprecate passing an empty string to options.shell (Antoine du Hamel) #58564
• [510872a522] - (SEMVER-MINOR) doc: graduate Symbol.dispose/asyncDispose from experimental (James M Snell) #58467
• [6f4c9dd423] - (SEMVER-MINOR) fs: add autoClose option to FileHandle readableWebStream (James M Snell) #58548
• [32efb63242] - http: deprecate instantiating classes without new (Yagiz Nizipli) #58518
• [0234a8ef53] - (SEMVER-MINOR) http2: add diagnostics channel http2.server.stream.finish (Darshan Sen) #58560
• [0f1e94f731] - (SEMVER-MINOR) lib: graduate error codes that have been around for years (James M Snell) #58541
• [13abca3c26] - (SEMVER-MINOR) perf_hooks: make event loop delay histogram disposable (James M Snell) #58384
• [8ea1fc5f3b] - (SEMVER-MINOR) src: support namespace options in configuration file (Pietro Marchini) #58073
• [d6ea36ad6c] - src,permission: implicit allow-fs-read to app entrypoint (Rafael Gonzaga) #58579
• [5936cef60a] - (SEMVER-MINOR) test: add disposable histogram test (James M Snell) #58384
• [7a91f4aaa1] - (SEMVER-MINOR) test: add test for async disposable worker thread (James M Snell) #58385
• [532c173cf2] - (SEMVER-MINOR) util: add none style to styleText (James M Snell) #58437
• [aeb9ab4c4c] - (SEMVER-MINOR) worker: make Worker async disposable (James M Snell) #58385

• [6c92329b1b] - Revert "benchmark: fix broken fs.cpSync benchmark" (Yuesong Jake Li) #58476
• [8bc045264e] - benchmark: fix broken fs.cpSync benchmark (Dario Piotrowicz) #58472
• [46aa079cce] - benchmark: add callback-based fs.glob to glob benchmark (Livia Medeiros) #58417
• [a57b05e105] - benchmark: add more options to cp-sync (Sonny) #58278
• [8b5ada4b31] - buffer: use Utf8LengthV2() instead of Utf8Length() (Tobias Nießen) #58156
• [22e97362f3] - build: search for libnode.so in multiple places (Jan Staněk) #58213
• [0b4056c573] - build: add support for OpenHarmony operating system (hqzing) #58350
• [db7f413dd3] - build: fix pointer compression builds (Joyee Cheung) #58171
• [7ff37183e5] - build: fix defaults for shared llhttp (Antoine du Hamel) #58269
• [b8c33190fe] - build,win: fix dll build (Stefan Stojanovic) #58357
• [ef9ecbe8a6] - child_process: give names to ChildProcess functions (Livia Medeiros) #58370
• [cec9d9d016] - crypto: forward auth tag to OpenSSL immediately (Tobias Nießen) #58547
• [9fccb0609f] - crypto: expose crypto.constants.OPENSSL_IS_BORINGSSL (Shelley Vohr) #58387
• [e7c69b9345] - deps: update nghttp2 to 1.65.0 (Node.js GitHub Bot) #57269
• [d0b89598a3] - deps: use proper C standard when building libuv (Yaksh Bariya) #58587
• [8a1fe7bc6a] - deps: update simdjson to 3.12.3 (Node.js GitHub Bot) #57682
• [36b639b1eb] - deps: update googletest to e9092b1 (Node.js GitHub Bot) #58565
• [f8a2a1ef52] - deps: update corepack to 0.33.0 (Node.js GitHub Bot) #58566
• [efb28f7895] - deps: V8: cherry-pick 249de887a8d3 (Michaël Zasso) #58561
• [88e621ea97] - deps: update sqlite to 3.50.0 (Node.js GitHub Bot) #58272
• [8d2ba386f1] - deps: update OpenSSL gen container to Ubuntu 22.04 (Michaël Zasso) #58432
• [7e62a77a7f] - deps: update undici to 7.10.0 (Node.js GitHub Bot) #58445
• [87eebd7bad] - deps: keep required OpenSSL doc files (Michaël Zasso) #58431
• [10910660f6] - deps: update undici to 7.9.0 (Node.js GitHub Bot) #58268
• [5e27078ca2] - deps: update ada to 3.2.4 (Node.js GitHub Bot) #58152
• [3b1e4bdbbb] - deps: update libuv to 1.51.0 (Node.js GitHub Bot) #58124
• [6bddf587ae] - dns: fix dns query cache implementation (Ethan Arrowood) #58404
• [984894b38c] - doc: deprecate utilisNativeError in favor of ErrorisError (Miguel Marcondes Filho) #58262
• [377ef3ce3a] - doc: add support link for panva (Filip Skokan) #58591
• [33a69ff9e4] - doc: update metadata for _transformState deprecation (James M Snell) #58530
• [d261274b0f] - doc: deprecate passing an empty string to options.shell (Antoine du Hamel) #58564
• [447ca11010] - doc: correct formatting of example definitions for --test-shard (Jacob Smith) #58571
• [2f555e0e19] - doc: clarify DEP0194 scope (Antoine du Hamel) #58504
• [af0446edcb] - doc: deprecate HTTP/2 priority signaling (Matteo Collina) #58313
• [80cc17f1ec] - doc: explain child_process code and signal null values everywhere (Darshan Sen) #58479
• [e13930bbe0] - doc: add Filip Skokan to TSC (Rafael Gonzaga) #58499
• [5f3f045ecc] - doc: update git node release example (Antoine du Hamel) #58475
• [4bbd026cde] - doc: add missing options.info for ZstdOptions (Jimmy Leung) #58360
• [a6d0d2a0d7] - doc: add missing options.info for BrotliOptions (Jimmy Leung) #58359
• [510872a522] - (SEMVER-MINOR) doc: graduate Symbol.dispose/asyncDispose from experimental (James M Snell) #58467
• [08685256cd] - doc: clarify x509.checkIssued only checks metadata (Filip Skokan) #58457
• [095794fc24] - doc: add links to parent class for node:zlib classes (Antoine du Hamel) #58433
• [7acac70bce] - doc: remove remaining uses of @@wellknown syntax (René) #58413
• [62056d40c7] - doc: clarify behavior of --watch-path and --watch flags (Juan Ignacio Benito) #58136
• [e6e6ae887d] - doc: fix the order of process.md sections (Allon Murienik) #58403
• [d2f6c82c0f] - doc,lib: update source map links to ECMA426 (Chengzhong Wu) #58597
• [a994d3d51a] - doc,src,test: fix typos (Noritaka Kobayashi) #58477
• [252acc1e89] - errors: show url of unsupported attributes in the error message (Aditi) #58303
• [767e88cbc3] - esm: unwrap WebAssembly.Global on Wasm Namespaces (Guy Bedford) #57525
• [adef9af3ae] - (SEMVER-MINOR) esm: implement import.meta.main (Joe) #57804
• [308f4cac4b] - esm: add support for dynamic source phase hook (Guy Bedford) #58147
• [fcef56cb05] - fs: improve cpSync no-filter copyDir performance (Dario Piotrowicz) #58461
• [996fdb05ab] - fs: fix cp handle existing symlinks (Yuesong Jake Li) #58476
• [d2931e50e3] - fs: fix cpSync handle existing symlinks (Yuesong Jake Li) #58476
• [6f4c9dd423] - (SEMVER-MINOR) fs: add autoClose option to FileHandle readableWebStream (James M Snell) #58548
• [8870bb8677] - fs: improve cpSync dest overriding performance (Dario Piotrowicz) #58160
• [f2e2301559] - fs: unexpose internal constants (Chengzhong Wu) #58327
• [32efb63242] - http: deprecate instantiating classes without new (Yagiz Nizipli) #58518
• [0b987e5741] - (SEMVER-MAJOR) http2: remove support for priority signaling (Matteo Collina) #58293
• [44ca874b2c] - http2: add lenient flag for RFC-9113 (Carlos Fuentes) #58116
• [0234a8ef53] - (SEMVER-MINOR) http2: add diagnostics channel 'http2.server.stream.finish' (Darshan Sen) #58560
• [2b868e8aa7] - http2: add diagnostics channel 'http2.server.stream.error' (Darshan Sen) #58512
• [b4df8d38cd] - http2: add diagnostics channel 'http2.server.stream.start' (Darshan Sen) #58449
• [d86ff608bb] - http2: remove no longer userful options.selectPadding (Jimmy Leung) #58373
• [13dbbdc8a8] - http2: add diagnostics channel 'http2.server.stream.created' (Darshan Sen) #58390
• [08855464ec] - http2: add diagnostics channel 'http2.client.stream.close' (Darshan Sen) #58329
• [566fc567b8] - http2: add diagnostics channel 'http2.client.stream.finish' (Darshan Sen) #58317
• [f30b9117d4] - http2: add diagnostics channel 'http2.client.stream.error' (Darshan Sen) #58306
• [79b852a692] - inspector: add mimeType and charset support to Network.Response (Shima Ryuhei) #58192
• [402ac8b1d8] - inspector: add protocol method Network.dataReceived (Chengzhong Wu) #58001
• [29f34a7f86] - lib: disable REPL completion on proxies and getters (Dario Piotrowicz) #57909
• [0f1e94f731] - (SEMVER-MINOR) lib: graduate error codes that have been around for years (James M Snell) #58541
• [cc1aacabb0] - lib: make ERM functions into wrappers returning undefined (Livia Medeiros) #58400
• [8df4dee38c] - lib: remove no-mixed-operators eslint rule (Ruben Bridgewater) #58375
• [104d173f58] - meta: bump github/codeql-action from 3.28.16 to 3.28.18 (dependabot[bot]) #58552
• [b454e8386c] - meta: bump codecov/codecov-action from 5.4.2 to 5.4.3 (dependabot[bot]) #58551
• [f31e014b81] - meta: bump step-security/harden-runner from 2.11.0 to 2.12.0 (dependabot[bot]) #58109
• [4da920cc13] - meta: bump ossf/scorecard-action from 2.4.1 to 2.4.2 (dependabot[bot]) #58550
• [eb9bb95fe2] - meta: bump rtCamp/action-slack-notify from 2.3.2 to 2.3.3 (dependabot[bot]) #58108
• [27ada1f18c] - meta: move one or more collaborators to emeritus (Node.js GitHub Bot) #58456
• [4606a6792b] - meta: bump github/codeql-action from 3.28.11 to 3.28.16 (dependabot[bot]) #58112
• [7dfe448b7f] - meta: bump codecov/codecov-action from 5.4.0 to 5.4.2 (dependabot[bot]) #58110
• [18bb5f7e7e] - meta: bump actions/download-artifact from 4.2.1 to 4.3.0 (dependabot[bot]) #58106
• [72f2a22889] - module: clarify cjs global-like error on ModuleJobSync (Carlos Espa) #56491
• [b0e0b1afae] - net: always publish to 'net.client.socket' diagnostics channel (Darshan Sen) #58349
• [f373d6a540] - node-api: use WriteOneByteV2 in napi_get_value_string_latin1 (Chengzhong Wu) #58325
• [429c38db1b] - node-api: use WriteV2 in napi_get_value_string_utf16 (Tobias Nießen) #58165
• [b882148999] - path: improve path.resolve() performance when used as process.cwd() (Ruben Bridgewater) #58362
• [13abca3c26] - (SEMVER-MINOR) perf_hooks: make event loop delay histogram disposable (James M Snell) #58384
• [1cd417d823] - permission: remove useless conditional (Juan José) #58514
• [462c4b0c24] - readline: add stricter validation for functions called after closed (Dario Piotrowicz) #58283
• [e3e36f902c] - repl: extract and standardize history from both repl and interface (Giovanni Bucci) #58225
• [cbb2a0172f] - report: use uv_getrusage_thread in report (theanarkh) #58405
• [3a6bd9c4c4] - sqlite: handle thrown errors in result callback (Colin Ihrig) #58426
• [0d761bbccd] - src: env_vars caching and local variable scope optimization (Mert Can Altin) #57624
• [8ea1fc5f3b] - (SEMVER-MINOR) src: support namespace options in configuration file (Pietro Marchini) #58073
• [f72ce2ef75] - src: remove fast API for InternalModuleStat (Joyee Cheung) #58489
• [8a1eaea151] - src: update std::vector<v8::Local<T>> to use v8::LocalVector<T> (Aditi) #58500
• [d99d657842] - src: fix FIPS init error handling (Tobias Nießen) #58379
• [11e4cd698b] - src: fix possible dereference of null pointer (Eusgor) #58459
• [ca0f5a0188] - src: add env->cppgc_allocation_handle() convenience method (James M Snell) #58483
• [440d4f42bd] - src: fix -Wreturn-stack-address error (Shelley Vohr) #58439
• [08615b1020] - src: prepare for v8 sandboxing (James M Snell) #58376
• [63f643e844] - src: reorganize ContextifyFunction methods (Chengzhong Wu) #58434
• [3b6895a506] - src: improve CompileFunctionAndCacheResult error handling (Chengzhong Wu) #58434
• [7f1c95aee8] - src: make a number of minor improvements to buffer (James M Snell) #58377
• [ce081bcb9a] - src: fix build when using shared simdutf (Antoine du Hamel) #58407
• [a35cc216e5] - src: track cppgc wrappers with a list in Realm (Joyee Cheung) #56534
• [947c1c2cd5] - src,lib: obtain sourceURL in magic comments from V8 (Chengzhong Wu) #58389
• [d6ea36ad6c] - src,permission: implicit allow-fs-read to app entrypoint (Rafael Gonzaga) #58579
• [e8a07f2198] - stream: making DecompressionStream spec compilent for trailing junk (0hm☘️) #58316
• [3caa2f71c1] - stream: test explicit resource management implicitly (LiviaMedeiros) #58296
• [9ccdf4fdb4] - test: improve flakiness detection on stack corruption tests (Darshan Sen) #58601
• [d3fea003df] - test: mark timeouts & flaky test as flaky on IBM i (Abdirahim Musse) #58583
• [8347ef6b53] - test: dispose of filehandles in filehandle.read tests (Livia Medeiros) #58543
• [34e86f91aa] - test: rewrite test-child-process-spawn-args (Michaël Zasso) #58546
• [d7a2458a58] - test: make sqlite-database-sync tests work with system sqlite (Jelle Licht) #58507
• [4d9d6830e0] - test: force slow JSON.stringify path for overflow (Shelley Vohr) #58181
• [bef67e45e3] - test: account for truthy signal in flaky async_hooks tests (Darshan Sen) #58478
• [007c82f206] - test: mark test-http2-debug as flaky on LinuxONE (Richard Lau) #58494
• [21f6400098] - test: update WPT for WebCryptoAPI to 591c95ce61 (Node.js GitHub Bot) #58176
• [1deb5f06a5] - test: remove --no-warnings flag (Tobias Nießen) #58424
• [beba631a10] - test: add tests ensuring worker threads cannot access internals (Joe) #58332
• [5936cef60a] - (SEMVER-MINOR) test: add disposable histogram test (James M Snell) #58384
• [7a91f4aaa1] - (SEMVER-MINOR) test: add test for async disposable worker thread (James M Snell) #58385
• [5fc4706280] - test: leverage process.features.openssl_is_boringssl in test (Shelley Vohr) #58421
• [4629b18397] - test: fix test-buffer-tostring-range on allocation failure (Joyee Cheung) #58416
• [4c445a8c85] - test: skip in test-buffer-tostring-rangeerror on allocation failure (Joyee Cheung) #58415
• [53cb29898b] - test: fix missing edge case in test-blob-slice-with-large-size (Joyee Cheung) #58414
• [89fdfdedc1] - test: make crypto tests work with BoringSSL (Shelley Vohr) #58117
• [3b5d0e62b1] - test: test reordering of setAAD and setAuthTag (Tobias Nießen) #58396
• [029440bec5] - test: switch from deprecated optparse to argparse (Aviv Keller) #58224
• [d05263edcc] - test: do not skip OCB decryption in FIPS mode (Tobias Nießen) #58382
• [23474cb257] - test: show more information in test-http2-debug upon failure (Joyee Cheung) #58391
• [d0302e7b3d] - test: remove loop over single element (Tobias Nießen) #58368
• [33f615897d] - test: add chacha20-poly1305 to auth tag order test (Tobias Nießen) #58367
• [8f09a1f502] - test: skip wasm-allocation tests for pointer compression builds (Joyee Cheung) #58171
• [4ae6a1a5ed] - test: remove references to create(De|C)ipher (Tobias Nießen) #58363
• [4d647271b2] - test_runner: emit event when file changes in watch mode (Jacopo Martinelli) #57903
• [1eda87c365] - test_runner: add level parameter to reporter.diagnostic (Jacopo Martinelli) #57923
• [13377512be] - tools: bump the eslint group in /tools/eslint with 6 updates (dependabot[bot]) #58549
• [fcc881de0d] - tools: support DisposableStack and AsyncDisposableStack in linter (LiviaMedeiros) #58454
• [208d6a5754] - tools: support explicit resource management in eslint (LiviaMedeiros) #58296
• [32070f304a] - tools: add missing highway defines for IBM i (Abdirahim Musse) #58335
• [ddab63a323] - tty: improve color terminal color detection (Ruben Bridgewater) #58146
• [c094bea8d9] - tty: use terminal VT mode on Windows (Anna Henningsen) #58358
• [dc21054a1e] - typings: add inspector internalBinding typing (Shima Ryuhei) #58492
• [3499285904] - typings: remove no longer valid FixedSizeBlobCopyJob type (Dario Piotrowicz) #58305
• [1ed2deb2c8] - typings: remove no longer valid revokeDataObject type (Dario Piotrowicz) #58305
• [532c173cf2] - (SEMVER-MINOR) util: add 'none' style to styleText (James M Snell) #58437
• [2d5a1ef528] - vm: import call should return a promise in the current context (Chengzhong Wu) #58309
• [588c2449f2] - win,tools: use Azure Trusted Signing (Stefan Stojanovic) #58502
• [aeb9ab4c4c] - (SEMVER-MINOR) worker: make Worker async disposable (James M Snell) #58385
• [23416cce0a] - worker: give names to MessagePort functions (Livia Medeiros) #58307
• [44df21b7fb] - zlib: remove mentions of unexposed Z_TREES constant (Jimmy Leung) #58371

• [c3ceaebb7a] - deps: update timezone to 2025b (Node.js GitHub Bot) #57857
• [5059a746ec] - doc: add dario-piotrowicz to collaborators (Dario Piotrowicz) #58102
• [c8ceaaf397] - (SEMVER-MINOR) doc: graduate multiple experimental apis (James M Snell) #57765
• [e21b37d9df] - (SEMVER-MINOR) esm: graduate import.meta properties (James M Snell) #58011
• [832640c35e] - (SEMVER-MINOR) esm: support top-level Wasm without package type (Guy Bedford) #57610
• [c510391d2f] - (SEMVER-MINOR) sqlite: add StatementSync.prototype.columns() (Colin Ihrig) #57490
• [5d1230bec0] - (SEMVER-MINOR) src: set default config as node.config.json (Marco Ippolito) #57171
• [30bb1ccbb0] - (SEMVER-MINOR) src: create THROW_ERR_OPTIONS_BEFORE_BOOTSTRAPPING (Marco Ippolito) #57016
• [0350c6f478] - (SEMVER-MINOR) src: add config file support (Marco Ippolito) #57016
• [e1d3a9e192] - (SEMVER-MINOR) src: add ExecutionAsyncId getter for any Context (Attila Szegedi) #57820
• [0ec912f452] - (SEMVER-MINOR) stream: preserve AsyncLocalStorage context in finished() (Gürgün Dayıoğlu) #57865
• [43490c8797] - (SEMVER-MINOR) util: add types.isFloat16Array() (Livia Medeiros) #57879
• [dda6ca9172] - (SEMVER-MINOR) worker: add worker.getHeapStatistics() (Matteo Collina) #57888

• [4252dc798c] - assert: support Float16Array in loose deep equality checks (Livia Medeiros) #57881
• [1c7396b078] - assert,util: fix constructor lookup in deep equal comparison (Ruben Bridgewater) #57876
• [1ded5f25c8] - assert,util: improve deep object comparison performance (Ruben Bridgewater) #57648
• [696b5f85ca] - assert,util: improve unequal number comparison performance (Ruben Bridgewater) #57619
• [775ee4d40f] - assert,util: improve array comparison (Ruben Bridgewater) #57619
• [3766992ba4] - benchmark: add sqlite prepare select get (Vinícius Lourenço) #58040
• [8390276be3] - benchmark: add sqlite prepare select all (Vinícius Lourenço) #58040
• [6a9b79e5c1] - benchmark: add sqlite is transaction (Vinícius Lourenço) #58040
• [f689f98344] - benchmark: add sqlite prepare insert (Vinícius Lourenço) #58040
• [14a82804d7] - benchmark: disambiguate filename and dirname read perf (Antoine du Hamel) #58056
• [e7e8256d35] - buffer: avoid creating unnecessary environment (Yagiz Nizipli) #58053
• [d7d8e8e994] - buffer: define global v8::CFunction objects as const (Mert Can Altin) #57676
• [f37633e85a] - build: use $(BUILDTYPE) when cleaning coverage files (Aviv Keller) #57995
• [e5bf67fe77] - build: define python when generating out/Makefile (Aviv Keller) #57970
• [718f874ae0] - build: fix zstd libname (Antoine du Hamel) #57999
• [53c5fdcae1] - crypto: fix cross-realm SharedArrayBuffer validation (Antoine du Hamel) #57974
• [78f4ffee5d] - crypto: fix cross-realm check of ArrayBuffer (Felipe Forbeck) #57828
• [f606352b63] - crypto: forbid passing Float16Array to getRandomValues() (Livia Medeiros) #57880
• [23c4e941c2] - crypto: remove BoringSSL dh-primes addition (Shelley Vohr) #57023
• [8339d9bc14] - deps: V8: cherry-pick f915fa4c9f41 (Chengzhong Wu) #55484
• [c2111dd126] - deps: V8: backport e5dbbbadcbff (Darshan Sen) #58120
• [4cc49be951] - deps: update zstd to 1.5.7 (Node.js GitHub Bot) #57940
• [c956d37c84] - deps: update zlib to 1.3.0.1-motley-780819f (Node.js GitHub Bot) #57768
• [c3ceaebb7a] - deps: update timezone to 2025b (Node.js GitHub Bot) #57857
• [b5cd0eb590] - deps: update simdutf to 6.4.2 (Node.js GitHub Bot) #57855
• [3eb6b814e9] - deps: update simdutf to 6.4.0 (Node.js GitHub Bot) #56764
• [0be9fa3218] - deps: update icu to 77.1 (Node.js GitHub Bot) #57455
• [d5cf4254fb] - doc: add HBSPS as triager (Wiyeong Seo) #57980
• [ad0861dba0] - doc: add ambassaor message (Brian Muenzenmeyer) #57600
• [0d3ec1aafe] - doc: fix misaligned options in vm.compileFunction() (Jimmy Leung) #58145
• [1f70baf3b0] - doc: add missing options.signal to readlinePromises.createInterface() (Jimmy Leung) #55456
• [ec6a48621f] - doc: fix typo of file zlib.md (yusheng chen) #58093
• [37e360e386] - doc: make stability labels more consistent (Antoine du Hamel) #57516
• [2b5d63d36e] - doc: allow the $schema property in node.config.json (Remco Haszing) #57560
• [a2063638e2] - doc: fix AsyncLocalStorage example response changes after node v18 (Naor Tedgi (Abu Emma)) #57969
• [474c2b14c3] - doc: mark Node.js 18 as End-of-Life (Richard Lau) #58084
• [5059a746ec] - doc: add dario-piotrowicz to collaborators (Dario Piotrowicz) #58102
• [1eec170fc3] - doc: fix formatting of import.meta.filename section (Antoine du Hamel) #58079
• [7f108de525] - doc: fix env variable name in util.styleText (Antoine du Hamel) #58072
• [54b3f7fffc] - doc: add returns for https.get (Eng Zer Jun) #58025
• [66f2c605a8] - doc: fix typo in buffer.md (chocolateboy) #58052
• [b0256dd42b] - doc: correct deprecation type of assert.CallTracker (René) #57997
• [581439c9e6] - doc: mark devtools integration section as active development (Chengzhong Wu) #57886
• [a2a2a2f027] - doc: fix typo in module.md (Alex Schwartz) #57889
• [c0ec4e2935] - doc: increase z-index of header element (Dario Piotrowicz) #57851
• [93d19ec6cd] - doc: add missing TS formats for load hooks (Antoine du Hamel) #57837
• [f5ea06c61f] - doc: clarify the multi REPL example (Dario Piotrowicz) #57759
• [80c4fe1b70] - doc: fix deprecation type for DEP0148 (Livia Medeiros) #57785
• [01cad99da0] - doc: list DOMException as a potential error raised by Node.js (Chengzhong Wu) #57783
• [a08b714a46] - doc: add missing v0.x changelog entries (Antoine du Hamel) #57779
• [d0b48350fd] - doc: fix typo in writing-docs (Sebastian Beltran) #57776
• [bde3725f8b] - doc: clarify examples section in REPL doc (Dario Piotrowicz) #57762
• [c8ceaaf397] - (SEMVER-MINOR) doc: graduate multiple experimental apis (James M Snell) #57765
• [92428c2609] - doc: explicitly state that corepack will be removed in v25+ (Trivikram Kamat) #57747
• [298969e1dd] - doc: update position type to integer | null in fs (Yukihiro Hasegawa) #57745
• [a9d28e27c9] - doc: update CI instructions (Antoine du Hamel) #57743
• [133d2878a1] - doc: update example of using await in REPL (Dario Piotrowicz) #57653
• [fc5f126629] - doc: add back mention of visa fees to onboarding doc (Darshan Sen) #57730
• [945f4ac538] - doc: process.execve is only unavailable for Windows (Yaksh Bariya) #57726
• [f3b885bb5e] - doc: clarify unhandledRejection events behaviors in process doc (Dario Piotrowicz) #57654
• [7326dda5b0] - doc: improved fetch docs (Alessandro Miliucci) #57296
• [6906c5eb1f] - doc: document REPL custom eval arguments (Dario Piotrowicz) #57690
• [47a7564e8f] - doc: classify Chrome DevTools Protocol as tier 2 (Chengzhong Wu) #57634
• [e274cc1310] - doc: replace NOTE that does not render properly (Colin Ihrig) #57484
• [bef06b11df] - esm: avoid import.meta setup costs for unused properties (Antoine du Hamel) #57286
• [e21b37d9df] - (SEMVER-MINOR) esm: graduate import.meta properties (James M Snell) #58011
• [832640c35e] - (SEMVER-MINOR) esm: support top-level Wasm without package type (Guy Bedford) #57610
• [8f643471ef] - fs: improve globSync performance (Rich Trott) #57725
• [bf9e17ecc6] - http2: use args.This() instead of args.Holder() (Joyee Cheung) #58004
• [137717354f] - http2: fix graceful session close (Kushagra Pandey) #57808
• [9baf580269] - http2: fix check for frame->hd.type (hanguanqiang) #57644
• [b8189242b2] - http2: skip writeHead if stream is closed (Shima Ryuhei) #57686
• [4e02a1650a] - lib: remove unused file fetch_module (Michaël Zasso) #55880
• [d9700fef26] - lib: avoid StackOverflow on serializeError (Chengzhong Wu) #58075
• [f3a16b6d9c] - lib: resolve the issue of not adhering to the specified buffer size (0hm☘️🏳️‍⚧️) #55896
• [d4fc282f73] - lib: fix AbortSignal.any() with timeout signals (Gürgün Dayıoğlu) #57867
• [f7e2902861] - lib: use Map primordial for ActiveAsyncContextFrame (Gürgün Dayıoğlu) #57670
• [8652b0e168] - meta: set nodejs/config as codeowner (Marco Ippolito) #57237
• [e98504ed95] - meta: allow penetration testing on live system with prior authorization (Matteo Collina) #57966
• [340731bea0] - meta: fix subsystem in commit title (Luigi Pinca) #57945
• [d767cbffcf] - meta: bump Mozilla-Actions/sccache-action from 0.0.8 to 0.0.9 (dependabot[bot]) #57720
• [575f904b13] - meta: bump actions/download-artifact from 4.1.9 to 4.2.1 (dependabot[bot]) #57719
• [acd323c069] - meta: bump actions/setup-python from 5.4.0 to 5.5.0 (dependabot[bot]) #57718
• [21246fec20] - meta: bump peter-evans/create-pull-request from 7.0.7 to 7.0.8 (dependabot[bot]) #57717
• [97f32d5849] - meta: bump github/codeql-action from 3.28.10 to 3.28.13 (dependabot[bot]) #57716
• [90ddbb8cfa] - meta: bump actions/cache from 4.2.2 to 4.2.3 (dependabot[bot]) #57715
• [728425d03e] - meta: bump actions/setup-node from 4.2.0 to 4.3.0 (dependabot[bot]) #57714
• [1f799140e0] - meta: bump actions/upload-artifact from 4.6.1 to 4.6.2 (dependabot[bot]) #57713
• [021b174a1f] - module: tidy code string concat → string templates (Jacob Smith) #55820
• [44c5718476] - module: fix incorrect formatting in require(esm) cycle error message (haykam821) #57453
• [bb09b4d4ae] - module: improve getPackageType performance (Dario Piotrowicz) #57599
• [9e6054e715] - module: remove unnecessary readPackage function (Dario Piotrowicz) #57596
• [4a8db273ba] - node-api: add nested object wrap and napi_ref test (Chengzhong Wu) #57981
• [3c65058f20] - node-api: convert NewEnv to node_napi_env__::New (Vladimir Morozov) #57834
• [a4105db1f7] - os: fix netmask format check condition in getCIDR function (Wiyeong Seo) #57324
• [248c938139] - process: disable building execve on IBM i (Abdirahim Musse) #57883
• [972275697a] - repl: deprecate repl.builtinModules (Dario Piotrowicz) #57508
• [7485309d7e] - sqlite: add location method (Edy Silva) #57860
• [c12cd2a190] - sqlite: add timeout options to DatabaseSync (Edy Silva) #57752
• [5e0503a967] - sqlite: add setReturnArrays method to StatementSync (Gürgün Dayıoğlu) #57542
• [ed9d2fd51a] - sqlite: enable common flags (Edy Silva) #57621
• [06dcb318bc] - sqlite: refactor prepared statement iterator (Colin Ihrig) #57569
• [c510391d2f] - (SEMVER-MINOR) sqlite: add StatementSync.prototype.columns() (Colin Ihrig) #57490
• [4e24456a1a] - sqlite: reset statement immediately in run() (Colin Ihrig) #57350
• [a9a6891b0b] - sqlite: fix coverity warnings related to backup() (Colin Ihrig) #56961
• [d2e1bcf3d4] - sqlite: fix use-after-free in StatementSync due to premature GC (Divy Srivastava) #56840
• [cfe15ca7b4] - sqlite: handle conflicting SQLite and JS errors (Colin Ihrig) #56787
• [0e999eb65f] - sqlite: add getter to detect transactions (Colin Ihrig) #57925
• [20b27331c0] - sqlite, test: expose sqlite online backup api (Edy Silva) #56253
• [8856712171] - sqlite,doc,test: add aggregate function (Edy Silva) #56600
• [120050db97] - sqlite,src: refactor sqlite value conversion (Edy Silva) #57571
• [4c5555d558] - src: initialize privateSymbols for per_context (Jason Zhang) #57479
• [d2ce9023b1] - src: ensure primordials are initialized exactly once (Chengzhong Wu) #57519
• [06179be6ca] - src: disable abseil deadlock detection (Chengzhong Wu) #57582
• [5121c47990] - src: fix node_config_file.h compilation error in GN build (Cheng) #57210
• [5d1230bec0] - (SEMVER-MINOR) src: set default config as node.config.json (Marco Ippolito) #57171
• [ccee741c43] - src: namespace config file flags (Marco Ippolito) #57170
• [30bb1ccbb0] - (SEMVER-MINOR) src: create THROW_ERR_OPTIONS_BEFORE_BOOTSTRAPPING (Marco Ippolito) #57016
• [0350c6f478] - (SEMVER-MINOR) src: add config file support (Marco Ippolito) #57016
• [eef37d00cb] - src: add more debug logs and comments in NodePlatform (Joyee Cheung) #58047
• [678e8f57c0] - src: add dcheck_eq for Object::New constructor calls (Jonas) #57943
• [aee45e2036] - src: move windows specific fns to _WIN32 (Yagiz Nizipli) #57951
• [6206a8edbc] - src: improve thread safety of TaskQueue (Shelley Vohr) #57910
• [03936f31c1] - src: fixup errorhandling more in various places (James M Snell) #57852
• [010dd91a19] - src: fix typo in comments (Edy Silva) #57868
• [e00c1ecbd2] - src: add BaseObjectPtr nullptr operations (Chengzhong Wu) #56585
• [648ad252e1] - src: remove void* -> char* -> void* casts (Tobias Nießen) #57791
• [680b434a62] - src: improve error handing in node_messaging (James M Snell) #57760
• [18f5301747] - src: remove unused detachArrayBuffer method (Yagiz Nizipli) #58055
• [065e8cd670] - src: use macros to reduce code duplication is cares_wrap (James M Snell) #57937
• [39af5d678f] - src: improve error handling in cares_wrap (James M Snell) #57937
• [ca020fdc4e] - src: fix -Wunreachable-code-return in node_sea (Shelley Vohr) #57664
• [32b6e7094a] - src: change DCHECK to CHECK (Wuli Zuo) #57948
• [e1d3a9e192] - (SEMVER-MINOR) src: add ExecutionAsyncId getter for any Context (Attila Szegedi) #57820
• [96243a723a] - src: update std::vector<v8::Local<T>> to use v8::LocalVector<T> (Aditi) #57646
• [0f2cbc17c7] - src: update std::vector<v8::Local<T>> to use v8::LocalVector<T> (Aditi) #57642
• [d1c6f861d5] - src: update std::vector<v8::Local<T>> to use v8::LocalVector<T> (Aditi) #57578
• [ab0d3a38db] - src: improve error message for invalid child stdio type in spawn_sync (Dario Piotrowicz) #57589
• [24b182e7b3] - src: implement util.types fast API calls (Ruben Bridgewater) #57819
• [dda6423be9] - src: enter and lock isolate properly in json parser (Joyee Cheung) #57823
• [4754c693f8] - src: improve error handling in node_env_var.cc (Antoine du Hamel) #57767
• [db483bbe63] - src: improve error handling in node_http2 (James M Snell) #57764
• [b0277700d6] - src: improve error handling in crypto_x509 (James M Snell) #57757
• [353587f984] - src: improve error handling in callback.cc (James M Snell) #57758
• [bec053ab20] - src: remove unused variable in crypto_x509.cc (Michaël Zasso) #57754
• [38a329a857] - src: fix kill signal 0 on Windows (Stefan Stojanovic) #57695
• [70bb387f82] - src: fix inefficient usage of v8_inspector::StringView (Simon Zünd) #52372
• [be038f0273] - src,permission: make ERR_ACCESS_DENIED more descriptive (Rafael Gonzaga) #57585
• [0ec912f452] - (SEMVER-MINOR) stream: preserve AsyncLocalStorage context in finished() (Gürgün Dayıoğlu) #57865
• [6ffb66f82f] - test: fix permission fixtures lint (Rafael Gonzaga) #55819
• [fd37891186] - test: add repl preview timeout test (Chengzhong Wu) #55484
• [1be5a8c1b4] - test: skip test-config-json-schema with quic (Richard Lau) #57225
• [e90583b657] - test: add more coverage to node_config_file (Marco Ippolito) #57170
• [df2a36bfcc] - test: remove deadlock workaround (Joyee Cheung) #58047
• [103034b051] - test: prevent extraneous HOSTNAME substitution in test-runner-output (René) #58076
• [3e58f81a38] - test: update WPT for WebCryptoAPI to b48efd681e (Node.js GitHub Bot) #58044
• [2f4e4164a3] - test: add missing newlines to repl .exit writes (Dario Piotrowicz) #58041
• [b40769292e] - test: add fast api tests for getLibuvNow() (Yagiz Nizipli) #58022
• [cbd5768d47] - test: add ALS test using http agent keep alive (Gerhard Stöbich) #58017
• [9e31ab502a] - test: deflake test-http2-options-max-headers-block-length (Luigi Pinca) #57959
• [13f8f9cc12] - test: rename to getCallSites (Wuli Zuo) #57948
• [92dce6ed6b] - test: force GC in test-file-write-stream4 (Luigi Pinca) #57930
• [aa755d3acf] - test: enable skipped colorize test (Shima Ryuhei) #57887
• [331f44c78c] - test: update WPT for WebCryptoAPI to 164426ace2 (Node.js GitHub Bot) #57854
• [4aaa8438b4] - test: add test for frame count being 0.5 (Jake Yuesong Li) #57732
• [fb51d3a0c5] - test: fix the decimal fractions explaination (Jake Yuesong Li) #57732
• [c6a45a9087] - Revert "test: add tests for REPL custom evals" (Tobias Nießen) #57793
• [f3a4d03963] - test: add tests for REPL custom evals (Dario Piotrowicz) #57691
• [a3be0df337] - test: update expected error message for macOS (Antoine du Hamel) #57742
• [a7e73a0a74] - test: fix dangling promise in test_runner no isolation test setup (Jacob Smith) #57595
• [edb7dd1ec7] - test_runner: match minimum file column to 'all files' (Shima Ryuhei) #57848
• [c56f495e83] - tools: extract target abseil to abseil.gyp (Chengzhong Wu) #57289
• [1b37161a27] - tools: ignore V8 tests in CodeQL scans (Rich Trott) #58081
• [23386308dd] - tools: enable CodeQL config file (Rich Trott) #58036
• [9c21abc169] - tools: ignore test directory in CodeQL scans (Rich Trott) #57978
• [f210a1530d] - tools: add semver-major release support to release-lint (Antoine du Hamel) #57892
• [234c417e98] - tools: add codeql nightly (Rafael Gonzaga) #57788
• [938f1532da] - tools: edit create-release-proposal workflow to handle pr body length (Elves Vieira) #57841
• [b362339f72] - tools: add zstd updater to workflow (KASEYA\yahor.siarheyenka) #57831
• [61180db9c0] - tools: remove unused osx-pkg-postinstall.sh (Antoine du Hamel) #57667
• [3ae04c94eb] - tools: do not use temp files when merging PRs (Antoine du Hamel) #57790
• [d623c2c2b4] - tools: update gyp-next to 0.20.0 (Node.js GitHub Bot) #57683
• [43ea4c532a] - tools: bump the eslint group in /tools/eslint with 4 updates (dependabot[bot]) #57721
• [5703147470] - tools: enable linter in test/fixtures/source-map/output (Antoine du Hamel) #57700
• [80d58c372d] - tools: enable linter in test/fixtures/errors (Antoine du Hamel) #57701
• [ef5275b7be] - tools: enable linter in test/fixtures/test-runner/output (Antoine du Hamel) #57698
• [631733e41f] - tools: enable linter in test/fixtures/eval (Antoine du Hamel) #57699
• [6d0128695f] - tools: enable linter on some fixtures file (Antoine du Hamel) #57674
• [f4d7cbae89] - tools: update ESLint to 9.23 (Antoine du Hamel) #57673
• [5a39a24cd1] - typings: fix ModulesBinding types (Antoine du Hamel) #55549
• [2df7ce9ebd] - util: fix parseEnv handling of invalid lines (Augustin Mauroy) #57798
• [416052a9f2] - util: fix formatting of objects with built-in Symbol.toPrimitive (Shima Ryuhei) #57832
• [43490c8797] - (SEMVER-MINOR) util: add types.isFloat16Array() (Livia Medeiros) #57879
• [30060e13d3] - util: preserve length of deprecated functions (Livia Medeiros) #57806
• [9837e08a84] - util: fix parseEnv incorrectly splitting multiple ‘=‘ in value (HEESEUNG) #57421
• [af41dd3c07] - watch: clarify completion/failure watch mode messages (Dario Piotrowicz) #57926
• [7229a29b47] - watch: check parent and child path properly (Jason Zhang) #57425
• [1b5a7c6dc8] - win: fix SIGQUIT on ClangCL (Stefan Stojanovic) #57659
• [e935c3c6f2] - worker: add ESM version examples to worker docs (fisker Cheung) #57645
• [dda6ca9172] - (SEMVER-MINOR) worker: add worker.getHeapStatistics() (Matteo Collina) #57888
• [f2159f2a44] - zlib: fix pointer alignment (jhofstee) #57727

• [9d35b4ce95] - doc: add JonasBa to collaborators (Jonas Badalic) #58355
• [b7d1bfa7b4] - doc: add puskin to collaborators (Giovanni Bucci) #58308
• [fcead7c28e] - (SEMVER-MINOR) fs: add to Dir support for explicit resource management (Antoine du Hamel) #58206
• [f7041b9369] - Revert "test_runner: change ts default glob" (Théo LUDWIG) #58202

• [b33e8d2a71] - async_hooks: ensure AsyncLocalStore instances work isolated (Gerhard Stöbich) #58149
• [a1b078b18c] - buffer: give names to Buffer.prototype.*Write() functions (Livia Medeiros) #58258
• [4c967b73c3] - buffer: use constexpr where possible (Yagiz Nizipli) #58141
• [327095a928] - build: fix uvwasi pkgname (Antoine du Hamel) #58270
• [2e54653d3d] - build: use FILE_OFFSET_BITS=64 esp. on 32-bit arch (RafaelGSS) #58090
• [7e4453fe93] - build: escape > metachar in vcbuild (Gerhard Stöbich) #58157
• [7dabf079b1] - child_process: give names to promisified exec() and execFile() (LiviaMedeiros) #57916
• [a896eff1f2] - crypto: handle missing OPENSSL_TLS_SECURITY_LEVEL (Shelley Vohr) #58103
• [6403aa458f] - crypto: merge CipherBase.initiv into constructor (Tobias Nießen) #58166
• [30897d915c] - deps: V8: backport 1d3362c55396 (Shu-yu Guo) #58230
• [63f5d69d2b] - deps: V8: cherry-pick 4f38995c8295 (Shu-yu Guo) #58230
• [5a5f6bb1d4] - deps: V8: cherry-pick 044b9b6f589d (Rezvan Mahdavi Hezaveh) #58230
• [db57f0a4c0] - deps: patch V8 to 13.6.233.10 (Michaël Zasso) #58230
• [f54a7a44ab] - Revert "deps: patch V8 to support compilation with MSVC" (Michaël Zasso) #58187
• [e3193eeca4] - Revert "deps: always define V8_EXPORT_PRIVATE as no-op" (Michaël Zasso) #58187
• [e75ecf8ad1] - Revert "deps: disable V8 concurrent sparkplug compilation" (Michaël Zasso) #58187
• [a0ca15558d] - deps: update llhttp to 9.3.0 (Fedor Indutny) #58144
• [90d4c11992] - deps: update amaro to 0.5.3 (Node.js GitHub Bot) #58174
• [9d35b4ce95] - doc: add JonasBa to collaborators (Jonas Badalic) #58355
• [2676ca0cf5] - doc: add latest security release steward (Rafael Gonzaga) #58339
• [c35cc1bdd9] - doc: document default test-reporter change (Nico Jansen) #58302
• [2bb433d4a5] - doc: fix CryptoKey.algorithm type and other interfaces in webcrypto.md (Filip Skokan) #58294
• [f04f09d783] - doc: mark the callback argument of crypto.generatePrime as mandatory (Allon Murienik) #58299
• [3b9b010844] - doc: remove comma delimiter mention on permissions doc (Rafael Gonzaga) #58297
• [f0cf1a028d] - doc: make Stability labels not sticky in Stability index (Livia Medeiros) #58291
• [a1b937bdee] - doc: update commit-queue documentation (Dario Piotrowicz) #58275
• [b7d1bfa7b4] - doc: add puskin to collaborators (Giovanni Bucci) #58308
• [fc30cdd8d2] - doc: update stability status for diagnostics_channel to experimental (Idan Goshen) #58261
• [290a5ab8ca] - doc: clarify napi_get_value_string_* for bufsize 0 (Tobias Nießen) #58158
• [c26863a683] - doc: fix typo of file http.md, outgoingMessage.setTimeout section (yusheng chen) #58188
• [62dbd36dcb] - doc: update return types for eventNames method in EventEmitter (Yukihiro Hasegawa) #58083
• [130c135f38] - fs: add support for URL for fs.glob's cwd option (Antoine du Hamel) #58182
• [fcead7c28e] - (SEMVER-MINOR) fs: add to Dir support for explicit resource management (Antoine du Hamel) #58206
• [655326ba9f] - fs: glob is stable, so should not emit experimental warnings (Théo LUDWIG) #58236
• [6ebcce7625] - fs: ensure dir.read() does not throw synchronously (Antoine du Hamel) #58228
• [7715722323] - http: remove unused functions and add todos (Yagiz Nizipli) #58143
• [74a807e31f] - http,https: give names to anonymous or misnamed functions (Livia Medeiros) #58180
• [24a9aefb08] - http2: add diagnostics channel 'http2.client.stream.start' (Darshan Sen) #58292
• [2cb86a3cd6] - http2: add diagnostics channel 'http2.client.stream.created' (Darshan Sen) #58246
• [8f1aee90d9] - http2: give name to promisified connect() (LiviaMedeiros) #57916
• [b66f1b0be6] - inspector: support for worker inspection in chrome devtools (Shima Ryuhei) #56759
• [868e72e367] - lib: fix sourcemaps with ts module mocking (Marco Ippolito) #58193
• [570cb6f6b6] - meta: ignore mailmap changes in linux ci (Jonas Badalic) #58356
• [b94f63b865] - module: handle instantiated async module jobs in require(esm) (Joyee Cheung) #58067
• [714b706f2e] - repl: add proper vertical cursor movements (Giovanni Bucci) #58003
• [629a954477] - repl: add possibility to edit multiline commands while adding them (Giovanni Bucci) #58003
• [17746129f3] - sqlite: set name and length on sqlite.backup() (Livia Medeiros) #58251
• [908782b1c0] - sqlite: add build option to build without sqlite (Michael Dawson) #58122
• [a92a4074e4] - src: remove unused internalVerifyIntegrity internal binding (Dario Piotrowicz) #58285
• [e0355b71ba] - src: add a variant of ToV8Value() for primitive arrays (Aditi) #57576
• [cb24fc71c4] - src: remove unused checkMessagePort internal binding (Dario Piotrowicz) #58267
• [4db5d0bc49] - src: remove unused shouldRetryAsESM internal binding (Dario Piotrowicz) #58265
• [3b8d4e32ca] - src: add a couple fast apis in node_os (James M Snell) #58210
• [a135c0aea3] - src: remove unneeded explicit V8 flags (Michaël Zasso) #58230
• [abeb5c4cdc] - src: fix module buffer allocation (X-BW) #57738
• [9ca4b46eb3] - src: use String::WriteV2() in TwoByteValue (Tobias Nießen) #58164
• [bb28e2bfd7] - src: remove overzealous tcsetattr error check (Ben Noordhuis) #58200
• [329e008e73] - src: refactor WriteUCS2 and remove flags argument (Tobias Nießen) #58163
• [c815f29d61] - src: remove NonCopyableMaybe (Tobias Nießen) #58168
• [685d137dec] - test: reduce iteration count in test-child-process-stdout-flush-exit (Antoine du Hamel) #58273
• [40dc092e25] - test: remove unnecessary console.log from test-repl-null-thrown (Dario Piotrowicz) #58281
• [a3af644dda] - test: allow tmpDir.path to be modified (Aviv Keller) #58173
• [97f80374a6] - test: add Float16Array to common.getArrayBufferViews() (Livia Medeiros) #58233
• [65683735ab] - test: fix executable flags (Livia Medeiros) #58250
• [ebb82aa1c3] - test: deflake test-http2-client-socket-destroy (Luigi Pinca) #58212
• [eb4f130b17] - test: remove Float16Array flag (Livia Medeiros) #58184
• [09a85fdeb1] - test: skip test-buffer-tostring-rangeerror when low on memory (Ruben Bridgewater) #58142
• [65446632b1] - test: reduce flakiness in test-heapdump-http2 (Joyee Cheung) #58148
• [f7041b9369] - Revert "test_runner: change ts default glob" (Théo LUDWIG) #58202
• [287454298d] - test_runner: unify --require and --import behavior when isolation none (Pietro Marchini) #57924
• [6301b003f7] - tools: ignore deps/ and benchmark/ for CodeQL (Rafael Gonzaga) #58254
• [2d5de7e309] - tools: add read permission to workflows that read contents (Antoine du Hamel) #58255
• [b8d4715527] - tools: support environment variables via comments (Pietro Marchini) #58186
• [d8e88f2c17] - typings: add missing typings for TypedArray (Jason Zhang) #58248
• [4c6f73c5d5] - url: improve performance of the format function (Giovanni Bucci) #57099
• [94c720c4ee] - util: add internal assignFunctionName() function (LiviaMedeiros) #57916
• [3ed159afd1] - watch: fix watch args not being properly filtered (Dario Piotrowicz) #58279

This is a security release.

• (CVE-2025-23166) fix error handling on async crypto operation

• [7d0c17b2ad] - (CVE-2025-23166) src: fix error handling on async crypto operations (RafaelGSS) nodejs-private/node-private#688

This is a security release.

src:

• (CVE-2025-23166) fix error handling on async crypto operation

• [a271810ce2] - deps: update c-ares to v1.34.5 (Node.js GitHub Bot) #57792
• [a12107f0dd] - (CVE-2025-23166) src: fix error handling on async crypto operations (RafaelGSS) nodejs-private/node-private#688

This is a security release.

• (CVE-2025-23166) fix error handling on async crypto operation
• (CVE-2025-23165) add missing call to uv_fs_req_cleanup

• [edaf54da00] - fs: added test for missing call to uv_fs_req_cleanup (Justin Nietzel) #57811
• [9f403e98ef] - (CVE-2025-23165) fs: add missing call to uv_fs_req_cleanup (Justin Nietzel) #57811
• [f4494d38f1] - (CVE-2025-23166) src: fix error handling on async crypto operations (RafaelGSS) nodejs-private/node-private#709

This is a security release.

• (CVE-2025-23166) fix error handling on async crypto operation
• (CVE-2025-23167) (SEMVER-MAJOR) update llhttp to 9.2.0
• (CVE-2025-23165) add missing call to uv_fs_req_cleanup

• [eb25047b1b] - deps: update llhttp to 9.2.0 (Node.js GitHub Bot) #51719
• [12dcd8db08] - deps: update llhttp to 9.1.3 (Node.js GitHub Bot) #50080
• [190e45a291] - (SEMVER-MAJOR) (CVE-2025-23167) deps: update llhttp to 9.1.2 (Paolo Insogna) #48981
• [fc68c44e6a] - fs: added test for missing call to uv_fs_req_cleanup (Justin Nietzel) #57811
• [9e13bf0a81] - (CVE-2025-23165) fs: add missing call to uv_fs_req_cleanup (Justin Nietzel) #57811
• [bd0aa5d44c] - (CVE-2024-27982) http: do not allow OBS fold in headers by default (Paolo Insogna) nodejs-private/node-private#556
• [6c57465920] - (CVE-2025-23166) src: fix error handling on async crypto operations (RafaelGSS) nodejs-private/node-private#710

• [2e1d9581e0] - Revert "buffer: move SlowBuffer to EOL" (Filip Skokan) #58211

• [d38e811c5b] - benchmark: fix typo in method name for error-stack (Miguel Marcondes Filho) #58128
• [2e1d9581e0] - Revert "buffer: move SlowBuffer to EOL" (Filip Skokan) #58211
• [a883b0c979] - build: use //third_party/simdutf by default in GN (Shelley Vohr) #58115
• [3d84b5c7a4] - doc: add HBSPS as triager (Wiyeong Seo) #57980
• [1e57cb686e] - doc: add history entries to --input-type section (Antoine du Hamel) #58175
• [0b54f06b6f] - doc: add ambassaor message (Brian Muenzenmeyer) #57600
• [46bee52d57] - doc: fix misaligned options in vm.compileFunction() (Jimmy Leung) #58145
• [e732a8bfdd] - doc: fix typo in benchmark script path (Miguel Marcondes Filho) #58129
• [d49ff34adb] - doc: add missing options.signal to readlinePromises.createInterface() (Jimmy Leung) #55456
• [bc9f5a2e79] - doc: fix typo of file zlib.md (yusheng chen) #58093
• [c8e8558958] - doc: clarify future Corepack removal in v25+ (Trivikram Kamat) #57825
• [b13d5d14bd] - meta: bump actions/setup-node from 4.3.0 to 4.4.0 (dependabot[bot]) #58111
• [0ebb17a300] - meta: bump actions/setup-python from 5.5.0 to 5.6.0 (dependabot[bot]) #58107
• [5946785bf4] - tools: exclude deps/v8/tools from CodeQL scans (Rich Trott) #58132
• [0708497c7f] - tools: bump the eslint group in /tools/eslint with 6 updates (dependabot[bot]) #58105

We’re excited to announce the release of Node.js 24! This release brings several significant updates, including the upgrade of the V8 JavaScript engine to version 13.6 and npm to version 11. Starting with Node.js 24, support for MSVC has been removed, and ClangCL is now required to compile Node.js on Windows. The AsyncLocalStorage API now uses AsyncContextFrame by default, and URLPattern is available globally. These changes, along with many other improvements, continue to push the platform forward.

As a reminder, Node.js 24 will enter long-term support (LTS) in October, but until then, it will be the "Current" release for the next six months. We encourage you to explore the new features and benefits offered by this latest release and evaluate their potential impact on your applications.

The V8 engine is updated to version 13.6, which includes several new JavaScript features:

• Float16Array
• Explicit resource management
• RegExp.escape
• WebAssembly Memory64
• Error.isError

The V8 update was a contribution by Michaël Zasso in #58070.

Node.js 24 comes with npm 11, which includes several improvements and new features. This update brings enhanced performance, improved security features, and better compatibility with modern JavaScript packages.

The npm update was a contribution by the npm team in #56274.

AsyncLocalStorage now uses AsyncContextFrame by default, which provides a more efficient implementation of asynchronous context tracking. This change improves performance and makes the API more robust for advanced use cases.

This change was a contribution by Stephen Belanger in #55552.

The URLPattern API is now exposed on the global object, making it easier to use without explicit imports. This API provides a powerful pattern matching system for URLs, similar to how regular expressions work for strings.

This feature was a contribution by Jonas Badalič in #56950.

The experimental Permission Model introduced in Node.js 20 has been improved, and the flag has been changed from --experimental-permission to simply --permission, indicating its increasing stability and readiness for broader adoption.

This change was a contribution by Rafael Gonzaga in #56240.

The test runner module now automatically waits for subtests to finish, eliminating the need to manually await test promises. This makes writing tests more intuitive and reduces common errors related to unhandled promises.

The test runner improvements were contributions by Colin Ihrig in #56664.

Node.js 24 includes Undici 7, which brings numerous improvements to the HTTP client capabilities, including better performance and support for newer HTTP features.

Several APIs have been deprecated or removed in this release:

• Runtime deprecation of url.parse() - use the WHATWG URL API instead (#55017)
• Removal of deprecated tls.createSecurePair (#57361)
• Runtime deprecation of SlowBuffer (#55175)
• Runtime deprecation of instantiating REPL without new (#54869)
• Deprecation of using Zlib classes without new (#55718)
• Deprecation of passing args to spawn and execFile in child_process (#57199)

• [c6b934380a] - (SEMVER-MAJOR) src: enable Float16Array on global object (Michaël Zasso) #58154
• [69efb81a73] - (SEMVER-MAJOR) src: enable explicit resource management (Michaël Zasso) #58154
• [b00ff4270e] - (SEMVER-MAJOR) src,test: unregister the isolate after disposal and before freeing (Joyee Cheung) #58070
• [b81697d860] - (SEMVER-MAJOR) src: use non-deprecated WriteUtf8V2() method (Yagiz Nizipli) #58070
• [1f06169b87] - (SEMVER-MAJOR) src: use non-deprecated Utf8LengthV2() method (Yagiz Nizipli) #58070
• [eae9a296f0] - (SEMVER-MAJOR) src: use V8-owned CppHeap (Joyee Cheung) #58070
• [087c254a11] - (SEMVER-MAJOR) test: fix test-fs-write for V8 13.6 (Michaël Zasso) #58070
• [9e49bedd8e] - (SEMVER-MAJOR) build: update list of installed cppgc headers (Michaël Zasso) #58070
• [93cca8a43e] - (SEMVER-MAJOR) tools: update V8 gypfiles for 13.6 (Michaël Zasso) #58070
• [347daa07be] - (SEMVER-MAJOR) tools: update V8 gypfiles for 13.5 (Michaël Zasso) #58070
• [2a35d5a86c] - (SEMVER-MAJOR) build: fix V8 TLS config for shared lib builds (Michaël Zasso) #58070
• [b0fb5a09cf] - (SEMVER-MAJOR) build: pass -fPIC to linker as well for shared builds (Michaël Zasso) #58070
• [dd4c5d6c73] - (SEMVER-MAJOR) src,test: add V8 API to test the hash seed (Michaël Zasso) #58070
• [1d5d7b6eed] - (SEMVER-MAJOR) src: use v8::ExternalMemoryAccounter (Michaël Zasso) #58070
• [3779e43cce] - (SEMVER-MAJOR) tools: update license-builder and LICENSE for V8 deps (Michaël Zasso) #58070
• [82c2255206] - (SEMVER-MAJOR) deps: remove deps/simdutf (Michaël Zasso) #58070
• [8a258eb7b1] - (SEMVER-MAJOR) test: handle explicit resource management globals (Michaël Zasso) #58070
• [9e0d9b6024] - (SEMVER-MAJOR) test: adapt assert tests to stack trace changes (Michaël Zasso) #58070
• [f7406aa56d] - (SEMVER-MAJOR) test: update test-linux-perf-logger (Michaël Zasso) #58070
• [c7493fac5e] - (SEMVER-MAJOR) Revert "test: disable fast API call count checks" (Michaël Zasso) #58070
• [50a8527867] - (SEMVER-MAJOR) src: replace uses of FastApiTypedArray (Michaël Zasso) #58070
• [9c1ebb713c] - (SEMVER-MAJOR) build: add /bigobj to compile V8 on Windows (Michaël Zasso) #58070
• [fb3d5ea45d] - (SEMVER-MAJOR) tools: update V8 gypfiles for 13.4 (Michaël Zasso) #58070
• [756abacf73] - (SEMVER-MAJOR) build,src,tools: adapt build config for V8 13.3 (Michaël Zasso) #58070
• [f8953e54b0] - (SEMVER-MAJOR) tools: update V8 gypfiles for 13.2 (Michaël Zasso) #58070
• [c8a0e205e1] - (SEMVER-MAJOR) tools: update V8 gypfiles for 13.1 (Michaël Zasso) #58070
• [1689ee84ce] - (SEMVER-MAJOR) build: enable shared RO heap with ptr compression (Michaël Zasso) #58070
• [15f2fb9467] - (SEMVER-MAJOR) build: remove support for s390 32-bit (Richard Lau) #58070
• [4ab254c9f2] - (SEMVER-MAJOR) deps: V8: backport 954187bb1b87 (Joyee Cheung) #58070
• [732923b927] - (SEMVER-MAJOR) deps: patch V8 to support compilation with MSVC (StefanStojanovic) #58070
• [972834d7c0] - (SEMVER-MAJOR) deps: always define V8_EXPORT_PRIVATE as no-op (Michaël Zasso) #58070
• [7098bff3a9] - (SEMVER-MAJOR) deps: disable V8 concurrent sparkplug compilation (Michaël Zasso) #58070
• [dc82c40d4a] - (SEMVER-MAJOR) deps: use std::map in MSVC STL for EphemeronRememberedSet (Joyee Cheung) #58070
• [42f5130ee2] - (SEMVER-MAJOR) deps: patch V8 for illumos (Dan McDonald) #58070
• [23b17dbd9e] - (SEMVER-MAJOR) deps: remove problematic comment from v8-internal (Michaël Zasso) #58070
• [c5d71fcdab] - (SEMVER-MAJOR) deps: define V8_PRESERVE_MOST as no-op on Windows (Stefan Stojanovic) #58070
• [fbc2005b15] - (SEMVER-MAJOR) deps: fix FP16 bitcasts.h (Stefan Stojanovic) #58070
• [57f9430503] - (SEMVER-MAJOR) deps: patch V8 to avoid duplicated zlib symbol (Michaël Zasso) #58070
• [f26cab1b85] - (SEMVER-MAJOR) src: update NODE_MODULE_VERSION to 137 (Michaël Zasso) #58070
• [f8923a4f17] - (SEMVER-MAJOR) build: reset embedder string to "-node.0" (Michaël Zasso) #58070
• [c7964bc02b] - (SEMVER-MAJOR) deps: update V8 to 13.6.233.8 (Michaël Zasso) #58070
• [6682861d6f] - (SEMVER-MAJOR) build: downgrade armv7 support to experimental (Michaël Zasso) #58071
• [0579e0ec93] - (SEMVER-MAJOR) buffer: move SlowBuffer to EOL (James M Snell) #58008
• [a55f5d5e63] - (SEMVER-MAJOR) readline: add stricter validation for functions called after closed (Dario Piotrowicz) #57680
• [d16b0bae55] - (SEMVER-MAJOR) http2: session tracking and graceful server close (Kushagra Pandey) #57586
• [e2b94dc3f9] - (SEMVER-MAJOR) readline: fix unicode line separators being ignored (Dario Piotrowicz) #57591
• [4a47ce5ff9] - (SEMVER-MAJOR) Revert "assert,util: revert recursive breaking change" (Ruben Bridgewater) #57622
• [7d4db69049] - (SEMVER-MAJOR) http: remove outgoingmessage _headers and _headersList (Yagiz Nizipli) #57551
• [fabf9384e0] - (SEMVER-MAJOR) fs: remove ability to call truncate with fd (Yagiz Nizipli) #57567
• [a587bd2ee2] - (SEMVER-MAJOR) net: make _setSimultaneousAccepts() end-of-life deprecated (Yagiz Nizipli) #57550
• [c6bca3fd34] - (SEMVER-MAJOR) child_process: deprecate passing args to spawn and execFile (Daniel Venable) #57199
• [e42c01b56d] - (SEMVER-MAJOR) buffer: make buflen in integer range (zhenweijin) #51821
• [cc08ad56b8] - (SEMVER-MAJOR) tls: remove deprecated tls.createSecurePair (Jonas) #57361
• [6f2a6b262b] - (SEMVER-MAJOR) tls: make server.prototype.setOptions end-of-life (Yagiz Nizipli) #57339
• [0c371d919e] - (SEMVER-MAJOR) lib: remove obsolete Cipher export (James M Snell) #57266
• [2cbf3c38db] - (SEMVER-MAJOR) timers: check for immediate instance in clearImmediate (Gürgün Dayıoğlu) #57069
• [4f512faf4a] - (SEMVER-MAJOR) lib: unexpose six process bindings (Michaël Zasso) #57149
• [8b40221777] - (SEMVER-MAJOR) build: bump supported macOS version to 13.5 (Michaël Zasso) #57115
• [5d7091f1bc] - (SEMVER-MAJOR) timers: set several methods EOL (Yagiz Nizipli) #56966
• [d1f8ccb10d] - (SEMVER-MAJOR) url: expose urlpattern as global (Jonas) #56950
• [ed52ab913b] - (SEMVER-MAJOR) build: increase minimum Xcode version to 16.1 (Michaël Zasso) #56824
• [1a2eb15bc6] - (SEMVER-MAJOR) test_runner: remove promises returned by t.test() (Colin Ihrig) #56664
• [96718268fe] - (SEMVER-MAJOR) test_runner: remove promises returned by test() (Colin Ihrig) #56664
• [aa3523ec22] - (SEMVER-MAJOR) test_runner: automatically wait for subtests to finish (Colin Ihrig) #56664
• [6857dbc018] - (SEMVER-MAJOR) test: disable fast API call count checks (Michaël Zasso) #55014
• [89f661dd66] - (SEMVER-MAJOR) build: link V8 with atomic library (Michaël Zasso) #55014
• [7e8752006a] - (SEMVER-MAJOR) src: update GetForegroundTaskRunner override (Etienne Pierre-doray) #55014
• [44b0e423dc] - (SEMVER-MAJOR) build: remove support for ppc 32-bit (Michaël Zasso) #55014
• [6f965260dd] - (SEMVER-MAJOR) tools: update V8 gypfiles for 13.0 (Michaël Zasso) #55014
• [52d39441d0] - (SEMVER-MAJOR) deps: V8: cherry-pick f915fa4c9f41 (Olivier Flückiger) #55014
• [99ffe3555a] - (SEMVER-MAJOR) deps: V8: cherry-pick 0d5d6e71bbb0 (Yagiz Nizipli) #55014
• [5d8011d91c] - (SEMVER-MAJOR) deps: V8: cherry-pick 0c11feeeca4a (Michaël Zasso) #55014
• [d85d2f8350] - (SEMVER-MAJOR) deps: define V8_PRESERVE_MOST as no-op on Windows (Stefan Stojanovic) #55014
• [e8f55f7b7a] - (SEMVER-MAJOR) deps: always define V8_NODISCARD as no-op (Michaël Zasso) #55014
• [b3c1b63a5d] - (SEMVER-MAJOR) deps: fix FP16 bitcasts.h (Stefan Stojanovic) #55014
• [d0361f0bba] - (SEMVER-MAJOR) deps: patch V8 to support compilation with MSVC (StefanStojanovic) #55014
• [a4e0fce896] - (SEMVER-MAJOR) deps: patch V8 to avoid duplicated zlib symbol (Michaël Zasso) #55014
• [4f8fd566cc] - (SEMVER-MAJOR) deps: disable V8 concurrent sparkplug compilation (Michaël Zasso) #55014
• [1142f78f1d] - (SEMVER-MAJOR) deps: always define V8_EXPORT_PRIVATE as no-op (Michaël Zasso) #55014
• [7917b67313] - (SEMVER-MAJOR) src: update NODE_MODULE_VERSION to 134 (Michaël Zasso) #55014
• [1f654e655c] - (SEMVER-MAJOR) build: reset embedder string to "-node.0" (Michaël Zasso) #55014
• [5edec0e39a] - (SEMVER-MAJOR) deps: update V8 to 13.0.245.25 (Michaël Zasso) #55014
• [25b22e4754] - (SEMVER-MAJOR) deps: upgrade npm to 11.0.0 (npm team) #56274
• [529b56ef9d] - (SEMVER-MAJOR) fs: deprecate passing invalid types in fs.existsSync (Carlos Espa) #55753
• [bf3bc4ec2f] - (SEMVER-MAJOR) src: drop --experimental-permission in favour of --permission (Rafael Gonzaga) #56240
• [fd8de670da] - (SEMVER-MAJOR) stream: catch and forward error from dest.write (jakecastelli) #55270
• [47b80c293d] - (SEMVER-MAJOR) deps: update undici to 7.0.0 (Node.js GitHub Bot) #56070
• [58982d712b] - (SEMVER-MAJOR) src: add async context frame to AsyncResource (Gerhard Stöbich) #56082
• [4ee87b8bc3] - (SEMVER-MAJOR) zlib: deprecate classes usage without new (Yagiz Nizipli) #55718
• [b02cd411c2] - (SEMVER-MAJOR) fs: runtime deprecate fs.F_OK, fs.R_OK, fs.W_OK, fs.X_OK (Livia Medeiros) #49686
• [d9540b51eb] - (SEMVER-MAJOR) fs: remove dirent.path (Antoine du Hamel) #55548
• [0368f2f662] - (SEMVER-MAJOR) repl: runtime deprecate instantiating without new (Aviv Keller) #54869
• [03dcd7077a] - (SEMVER-MAJOR) src: nuke deprecated and un-used enum members in OptionEnvvarSettings (Juan José) #53079
• [51ae57673d] - (SEMVER-MAJOR) lib: make ALS default to AsyncContextFrame (Stephen Belanger) #55552
• [11fbdd8c9d] - (SEMVER-MAJOR) url: runtime deprecate url.parse (Yagiz Nizipli) #55017
• [019efe1453] - (SEMVER-MAJOR) lib: runtime deprecate SlowBuffer (Rafael Gonzaga) #55175

• [bf9f25719a] - (SEMVER-MINOR) esm: graduate import.meta properties (James M Snell) #58011
• [947c6a4405] - (SEMVER-MINOR) src: add ExecutionAsyncId getter for any Context (Attila Szegedi) #57820
• [ea04184328] - (SEMVER-MINOR) worker: add worker.getHeapStatistics() (Matteo Collina) #57888
• [ec79f7686d] - (SEMVER-MINOR) util: add types.isFloat16Array() (Livia Medeiros) #57879
• [13dee58d0e] - (SEMVER-MINOR) test_runner: add global setup and teardown functionality (Pietro Marchini) #57438
• [932c2d9c70] - (SEMVER-MINOR) stream: preserve AsyncLocalStorage context in finished() (Gürgün Dayıoğlu) #57865
• [18d6249580] - (SEMVER-MINOR) repl: add support for multiline history (Giovanni Bucci) #57400
• [c3e44342d9] - (SEMVER-MINOR) lib: add defaultValue and name options to AsyncLocalStorage (James M Snell) #57766
• [f99f815641] - (SEMVER-MINOR) doc: graduate multiple experimental apis (James M Snell) #57765
• [21f3c96199] - (SEMVER-MINOR) esm: support top-level Wasm without package type (Guy Bedford) #57610
• [ada34bd0ea] - (SEMVER-MINOR) http: support http proxy for fetch under NODE_USE_ENV_PROXY (Joyee Cheung) #57165
• [05cf1410b1] - (SEMVER-MINOR) assert: mark partialDeepStrictEqual() as stable (Ruben Bridgewater) #57370
• [57e49ee777] - (SEMVER-MINOR) esm: support source phase imports for WebAssembly (Guy Bedford) #56919
• [55413004c8] - (SEMVER-MINOR) stream: handle generator destruction from Duplex.from() (Matthieu Sieben) #55096

• [7df9558efc] - assert: support Float16Array in loose deep equality checks (Livia Medeiros) #57881
• [d9e78c00c1] - assert,util: fix constructor lookup in deep equal comparison (Ruben Bridgewater) #57876
• [f4572f0826] - assert,util: improve deep object comparison performance (Ruben Bridgewater) #57648
• [2e9fb6e1e0] - assert,util: improve unequal number comparison performance (Ruben Bridgewater) #57619
• [5f9cc5ecbb] - assert,util: improve array comparison (Ruben Bridgewater) #57619
• [b5b192314c] - async_hooks: enable AsyncLocalStorage once constructed (Chengzhong Wu) #58029
• [442b4162fb] - benchmark: add sqlite prepare select get (Vinícius Lourenço) #58040
• [2d894eacae] - benchmark: add sqlite prepare select all (Vinícius Lourenço) #58040
• [4d47f3afef] - benchmark: add sqlite is transaction (Vinícius Lourenço) #58040
• [85f2bbc02b] - benchmark: add sqlite prepare insert (Vinícius Lourenço) #58040
• [e61b38e47d] - benchmark: disambiguate filename and dirname read perf (Antoine du Hamel) #58056
• [ca86c93390] - buffer: avoid creating unnecessary environment (Yagiz Nizipli) #58053
• [dc22890dd8] - buffer: improve byteLength performance (Yagiz Nizipli) #58048
• [619bf86fe9] - buffer: define global v8::CFunction objects as const (Mert Can Altin) #57676
• [d24414ceec] - build: use $(BUILDTYPE) when cleaning coverage files (Aviv Keller) #57995
• [004913992c] - build: define python when generating out/Makefile (Aviv Keller) #57970
• [77d11f9c7c] - build: fix zstd libname (Antoine du Hamel) #57999
• [74473af8ee] - build: use clang-cl in coverage-windows workflow (Michaël Zasso) #57919
• [46fc497e7b] - build: fix missing files warning (Luigi Pinca) #57870
• [403264c02e] - build: remove redundant -mXX flags for V8 (Michaël Zasso) #57907
• [e55b02b368] - build: drop support for python 3.8 (Aviv Keller) #55239
• [234c71077b] - crypto: fix cross-realm SharedArrayBuffer validation (Antoine du Hamel) #57974
• [14367588d8] - crypto: fix cross-realm check of ArrayBuffer (Felipe Forbeck) #57828
• [0f55a96e9c] - crypto: forbid passing Float16Array to getRandomValues() (Livia Medeiros) #57880
• [dce6f43a4f] - crypto: revert dangerous uses of std::string_view (Tobias Nießen) #57816
• [fd3fb0c347] - crypto: fix misleading positional argument (Tobias Nießen) #57843
• [92aae40dce] - crypto: make auth tag size assumption explicit (Tobias Nießen) #57803
• [4793bb2fdc] - crypto: remove CipherBase::Init (Tobias Nießen) #57787
• [e567952388] - crypto: remove BoringSSL dh-primes addition (Shelley Vohr) #57023
• [270ab65ee4] - deps: update ada to 3.2.3 (Node.js GitHub Bot) #58045
• [f725127c19] - deps: update zstd to 1.5.7 (Node.js GitHub Bot) #57940
• [fd6adb7de6] - deps: update simdutf to 6.5.0 (Node.js GitHub Bot) #57939
• [cdedec7e29] - deps: update undici to 7.8.0 (Node.js GitHub Bot) #57770
• [878dc9337e] - deps: update zlib to 1.3.0.1-motley-780819f (Node.js GitHub Bot) #57768
• [3e885e1441] - deps: update timezone to 2025b (Node.js GitHub Bot) #57857
• [e92e100c9d] - deps: update amaro to 0.5.2 (Node.js GitHub Bot) #57871
• [afc49db038] - deps: update simdutf to 6.4.2 (Node.js GitHub Bot) #57855
• [70bd8bc174] - deps: delete OpenSSL demos, doc and test folders (Michaël Zasso) #57835
• [40dcd4a3d1] - deps: upgrade npm to 11.3.0 (npm team) #57801
• [678d82b9be] - deps: update c-ares to v1.34.5 (Node.js GitHub Bot) #57792
• [f079c4aa37] - deps: update simdutf to 6.4.0 (Node.js GitHub Bot) #56764
• [ec29f563a9] - deps: update ada to 3.2.2 (Yagiz Nizipli) #57693
• [95296d0d84] - deps: update amaro to 0.5.1 (Marco Ippolito) #57704
• [c377394657] - deps: update undici to 7.6.0 (nodejs-github-bot) #57685
• [a56175561a] - deps: update amaro to 0.5.0 (nodejs-github-bot) #57687
• [a86912a462] - deps: update icu to 77.1 (Node.js GitHub Bot) #57455
• [0b2cf1b642] - deps: update undici to 7.5.0 (Node.js GitHub Bot) #57427
• [c3927aa558] - deps: upgrade npm to 11.2.0 (npm team) #57334
• [9c7bc95f56] - deps: update undici to 7.4.0 (Node.js GitHub Bot) #57236
• [9dee7b94bf] - deps: update undici to 7.3.0 (Node.js GitHub Bot) #56624
• [cadc4ed067] - deps: upgrade npm to 11.1.0 (npm team) #56818
• [5770972dc6] - deps: update undici to 7.2.1 (Node.js GitHub Bot) #56569
• [67b647edc7] - deps: update undici to 7.2.0 (Node.js GitHub Bot) #56335
• [6c03beba46] - deps: update undici to 7.1.0 (Node.js GitHub Bot) #56179
• [8b4bacdf1a] - dns: restore dns query cache ttl (Ethan Arrowood) #57640
• [f6a085da3f] - doc: mark Node.js 18 as End-of-Life (Richard Lau) #58084
• [ca67c002d6] - doc: add dario-piotrowicz to collaborators (Dario Piotrowicz) #58102
• [cdb3d01194] - doc: fix formatting of import.meta.filename section (Antoine du Hamel) #58079
• [0557d60f41] - doc: fix env variable name in util.styleText (Antoine du Hamel) #58072
• [d5783af1fe] - doc: add returns for https.get (Eng Zer Jun) #58025
• [a2260a4a18] - doc: fix typo in buffer.md (chocolateboy) #58052
• [352df168da] - doc: reserve module version 136 for Electron 37 (Calvin) #57979
• [ebbbdd15a1] - doc: correct deprecation type of assert.CallTracker (René) #57997
• [36b0a296db] - doc: fix AsyncLocalStorage example response changes after node v18 (Naor Tedgi (Abu Emma)) #57969
• [8b4adfb439] - doc: fix linter errors (Antoine du Hamel) #57987
• [626b26d888] - doc: mark devtools integration section as active development (Chengzhong Wu) #57886
• [56a808d20b] - doc: fix typo in module.md (Alex Schwartz) #57889
• [df90bd9656] - doc: increase z-index of header element (Dario Piotrowicz) #57851
• [74c415d46a] - doc: add missing TS formats for load hooks (Antoine du Hamel) #57837
• [ce1b5aabd4] - doc: clarify the multi REPL example (Dario Piotrowicz) #57759
• [deb434e61f] - doc: fix deprecation type for DEP0148 (Livia Medeiros) #57785
• [a5ef2e8858] - doc: list DOMException as a potential error raised by Node.js (Chengzhong Wu) #57783
• [f66a2717ee] - doc: add missing v0.x changelog entries (Antoine du Hamel) #57779
• [05098668ba] - doc: fix typo in writing-docs (Sebastian Beltran) #57776
• [379718e26e] - doc: clarify examples section in REPL doc (Dario Piotrowicz) #57762
• [952a212377] - doc: explicitly state that corepack will be removed in v25+ (Trivikram Kamat) #57747
• [81066717d0] - doc: update position type to integer | null in fs (Yukihiro Hasegawa) #57745
• [a00fec62f9] - doc: allow the $schema property in node.config.json (Remco Haszing) #57560
• [cc848986ad] - doc: update CI instructions (Antoine du Hamel) #57743
• [576a6df5bb] - doc: update example of using await in REPL (Dario Piotrowicz) #57653
• [0a15b00d34] - doc: add back mention of visa fees to onboarding doc (Darshan Sen) #57730
• [766d9a8eac] - doc: remove link to QUIC.md (Antoine du Hamel) #57729
• [a8da209796] - doc: process.execve is only unavailable for Windows (Yaksh Bariya) #57726
• [d066d1fcec] - doc: mark type stripping as release candidate (Marco Ippolito) #57705
• [35096b7353] - doc: clarify unhandledRejection events behaviors in process doc (Dario Piotrowicz) #57654
• [27b113dced] - doc: improved fetch docs (Alessandro Miliucci) #57296
• [310ccb5b7d] - doc: document REPL custom eval arguments (Dario Piotrowicz) #57690
• [44dfbeca23] - doc: classify Chrome DevTools Protocol as tier 2 (Chengzhong Wu) #57634
• [1e920a06c7] - doc: mark multiple vm module APIS stable (James M Snell) #57513
• [db770a0b3b] - doc: correct status of require(esm) warning in v20 changelog (Joyee Cheung) #57529
• [24c460dc0c] - doc: reserve NMV 135 for Electron 36 (David Sanders) #57151
• [5119049ca6] - doc: fix faulty YAML metadata (Antoine du Hamel) #56508
• [7bedcfd4a2] - doc: fix typo (Alex Yang) #56125
• [069ec1b983] - doc: consolidate history table of CustomEvent (Edigleysson Silva (Edy)) #55758
• [304f164f52] - doc,build,win: update docs with clang (Stefan Stojanovic) #57991
• [c4ca0d7ab1] - esm: avoid import.meta setup costs for unused properties (Antoine du Hamel) #57286
• [073d40be42] - fs: added test for missing call to uv_fs_req_cleanup (Justin Nietzel) #57811
• [52e4967f45] - fs: add missing call to uv_fs_req_cleanup (Justin Nietzel) #57811
• [3edea66431] - fs: improve globSync performance (Rich Trott) #57725
• [b8865dfda5] - fs: only show deprecation warning when error code matches (Antoine du Hamel) #56549
• [c91ce2120c] - fs: fix getDirent().parentPath when type is UV_DIRENT_UNKNOWN (Livia Medeiros) #55553
• [5e9cac2714] - http2: add raw header array support to h2Session.request() (Tim Perry) #57917
• [924ebcd7f7] - http2: use args.This() instead of args.Holder() (Joyee Cheung) #58004
• [a3655645d9] - http2: fix graceful session close (Kushagra Pandey) #57808
• [406b06b046] - http2: fix check for frame->hd.type (hanguanqiang) #57644
• [8f3aeea613] - http2: skip writeHead if stream is closed (Shima Ryuhei) #57686
• [398674a25a] - lib: avoid StackOverflow on serializeError (Chengzhong Wu) #58075
• [4ef6376cff] - lib: resolve the issue of not adhering to the specified buffer size (0hm☘️🏳️‍⚧️) #55896
• [5edcb28583] - lib: fix AbortSignal.any() with timeout signals (Gürgün Dayıoğlu) #57867
• [68c5954d59] - lib: use Map primordial for ActiveAsyncContextFrame (Gürgün Dayıoğlu) #57670
• [62640750fd] - meta: allow penetration testing on live system with prior authorization (Matteo Collina) #57966
• [33803a5fbb] - meta: fix subsystem in commit title (Luigi Pinca) #57945
• [7e195ec8f8] - meta: bump Mozilla-Actions/sccache-action from 0.0.8 to 0.0.9 (dependabot[bot]) #57720
• [6ab9db9552] - meta: bump actions/download-artifact from 4.1.9 to 4.2.1 (dependabot[bot]) #57719
• [f0c84a6aab] - meta: bump actions/setup-python from 5.4.0 to 5.5.0 (dependabot[bot]) #57718
• [eb1a515c99] - meta: bump peter-evans/create-pull-request from 7.0.7 to 7.0.8 (dependabot[bot]) #57717
• [89c156d715] - meta: bump github/codeql-action from 3.28.10 to 3.28.13 (dependabot[bot]) #57716
• [8e27c827fa] - meta: bump actions/cache from 4.2.2 to 4.2.3 (dependabot[bot]) #57715
• [dd5e580acd] - meta: bump actions/setup-node from 4.2.0 to 4.3.0 (dependabot[bot]) #57714
• [4876e1658f] - meta: bump actions/upload-artifact from 4.6.1 to 4.6.2 (dependabot[bot]) #57713
• [004914722f] - module: fix incorrect formatting in require(esm) cycle error message (haykam821) #57453
• [a5406899db] - module: improve getPackageType performance (Dario Piotrowicz) #57599
• [6adbbe2887] - module: remove unnecessary readPackage function (Dario Piotrowicz) #57596
• [1e490aa570] - module: improve typescript error message format (Marco Ippolito) #57687
• [ecd081df82] - node-api: add nested object wrap and napi_ref test (Chengzhong Wu) #57981
• [b4f6aa8a87] - node-api: convert NewEnv to node_napi_env__::New (Vladimir Morozov) #57834
• [8cd98220af] - os: fix netmask format check condition in getCIDR function (Wiyeong Seo) #57324
• [8b83ab39e3] - process: disable building execve on IBM i (Abdirahim Musse) #57883
• [9230f22029] - process: remove support for undocumented symbol (Antoine du Hamel) #56552
• [5835de65ee] - quic: fix debug log (jakecastelli) #57689
• [14b357940c] - Revert "readline: add stricter validation for functions called after closed" (Dario Piotrowicz) #58024
• [ab99ee6f4c] - repl: fix multiline history editing string order (Giovanni Bucci) #57874
• [160da87484] - repl: deprecate repl.builtinModules (Dario Piotrowicz) #57508
• [10eb2b079e] - sqlite: add location method (Edy Silva) #57860
• [da05addc5e] - sqlite: add getter to detect transactions (Colin Ihrig) #57925
• [0df87e07a0] - sqlite: add timeout options to DatabaseSync (Edy Silva) #57752
• [2b2a0bf96b] - sqlite: add setReturnArrays method to StatementSync (Gürgün Dayıoğlu) #57542
• [064e0ebc90] - sqlite: enable common flags (Edy Silva) #57621
• [26fa594454] - sqlite: refactor prepared statement iterator (Colin Ihrig) #57569
• [0bf2c2827c] - sqlite,doc,test: add aggregate function (Edy Silva) #56600
• [da281d7651] - sqlite,src: refactor sqlite value conversion (Edy Silva) #57571
• [413e93ce7d] - src: only block on user blocking worker tasks (Joyee Cheung) #58047
• [a5d01667e1] - src: use priority queue to run worker tasks (Joyee Cheung) #58047
• [d2f5ceb757] - src: add more debug logs and comments in NodePlatform (Joyee Cheung) #58047
• [130eaa20a4] - src: improve parsing of boolean options (Edy Silva) #58039
• [f7ab6300de] - src: remove unused detachArrayBuffer method (Yagiz Nizipli) #58055
• [d712aa4cc0] - src: fix internalModuleStat v8 fast path (Yagiz Nizipli) #58054
• [902cbe66a2] - src: fix EnvironmentOptions.async_context_frame default value (Chengzhong Wu) #58030
• [cfb39b9adb] - src: annotate BaseObjects in the heap snapshots correctly (Joyee Cheung) #57417
• [4e02f239e4] - src: use macros to reduce code duplication is cares_wrap (James M Snell) #57937
• [f36d30043a] - src: improve error handling in cares_wrap (James M Snell) #57937
• [88f047b828] - src: use ranges library (C++20) to simplify code (Daniel Lemire) #57975
• [09206e9731] - src: fix -Wunreachable-code-return in node_sea (Shelley Vohr) #57664
• [87fd838a73] - src: add dcheck_eq for Object::New constructor calls (Jonas) #57943
• [2877207e19] - src: move windows specific fns to _WIN32 (Yagiz Nizipli) #57951
• [b4055150bd] - src: avoid calling SetPrototypeV2() (Yagiz Nizipli) #57949
• [46062f14e7] - src: change DCHECK to CHECK (Wuli Zuo) #57948
• [a1106cc878] - src: improve thread safety of TaskQueue (Shelley Vohr) #57910
• [99ed5034ea] - src: fixup errorhandling more in various places (James M Snell) #57852
• [227f2cb9a8] - src: fix typo in comments (Edy Silva) #57868
• [a7d614a930] - src: update std::vector<v8::Local<T>> to use v8::LocalVector<T> (Aditi) #57646
• [4e7ae97dce] - src: update std::vector<v8::Local<T>> to use v8::LocalVector<T> (Aditi) #57642
• [aab4adb34e] - src: update std::vector<v8::Local<T>> to use v8::LocalVector<T> (Aditi) #57578
• [fded233676] - src: migrate from deprecated SnapshotCreator constructor (Joyee Cheung) #55337
• [8c5f9b4708] - src: improve error message for invalid child stdio type in spawn_sync (Dario Piotrowicz) #57589
• [14d751a736] - src: implement util.types fast API calls (Ruben Bridgewater) #57819
• [5e14fd13aa] - src: enter and lock isolate properly in json parser (Joyee Cheung) #57823
• [34350019f8] - src: add BaseObjectPtr nullptr operations (Chengzhong Wu) #56585
• [d50b8a8815] - src: remove void* -> char* -> void* casts (Tobias Nießen) #57791
• [2b0f65ed5f] - src: improve error handling in node_env_var.cc (Antoine du Hamel) #57767
• [fc5295521a] - src: improve error handling in node_http2 (James M Snell) #57764
• [c707633f45] - src: improve error handing in node_messaging (James M Snell) #57760
• [4093de6ff5] - src: improve error handling in crypto_x509 (James M Snell) #57757
• [d309712820] - src: improve error handling in callback.cc (James M Snell) #57758
• [6d39c47ee8] - src: improve StringBytes error handling (James M Snell) #57706
• [3ff37a844f] - src: initialize privateSymbols for per_context (Jason Zhang) #57479
• [56380df40c] - src: improve error handling in process.env handling (James M Snell) #57707
• [db8b29d282] - src: remove unused variable in crypto_x509.cc (Michaël Zasso) #57754
• [ed72044cca] - src: update std::vector<v8::Local<T>> to use v8::LocalVector<T> (Aditi) #57733
• [50f57073d8] - src: fix kill signal 0 on Windows (Stefan Stojanovic) #57695
• [e144b69044] - src: fixup fs SyncCall to propagate errors correctly (James M Snell) #57711
• [f58c12078b] - src: fix inefficient usage of v8_inspector::StringView (Simon Zünd) #52372
• [a3ad331ce5] - src: disable abseil deadlock detection (Chengzhong Wu) #57582
• [e4ff2b6fad] - src: remove deleted tls file (Shelley Vohr) #57481
• [d5db63a1a8] - Revert "src: do not expose simdjson.h in node_config_file.h" (James M Snell) #57197
• [076a99f11d] - src: do not expose simdjson.h in node_config_file.h (Cheng) #57173
• [ad845588d0] - Revert "src: modernize cleanup queue to use c++20" (Richard Lau) #56846
• [581b44421a] - src: modernize cleanup queue to use c++20 (Yagiz Nizipli) #56063
• [a154352215] - src,permission: make ERR_ACCESS_DENIED more descriptive (Rafael Gonzaga) #57585
• [6156f8a6d5] - Revert "stream: handle generator destruction from Duplex.from()" (jakecastelli) #56278
• [a0077c9b8b] - test: remove deadlock workaround (Joyee Cheung) #58047
• [1f2b26172a] - test: prevent extraneous HOSTNAME substitution in test-runner-output (René) #58076
• [9ba16469c3] - test: update WPT for WebCryptoAPI to b48efd681e (Node.js GitHub Bot) #58044
• [3d708e0132] - test: add missing newlines to repl .exit writes (Dario Piotrowicz) #58041
• [3457aee009] - test: use validateByRetainingPath in heapdump tests (Joyee Cheung) #57417
• [3d34c5f5e3] - test: add fast api tests for getLibuvNow() (Yagiz Nizipli) #58022
• [b8b019245b] - test: add ALS test using http agent keep alive (Gerhard Stöbich) #58017
• [cbd2abeb8d] - test: deflake test-http2-options-max-headers-block-length (Luigi Pinca) #57959
• [21d052a578] - test: rename to getCallSites (Wuli Zuo) #57948
• [f2fd19e641] - test: force GC in test-file-write-stream4 (Luigi Pinca) #57930
• [7039173398] - test: enable skipped colorize test (Shima Ryuhei) #57887
• [baa6968f95] - test: update WPT for WebCryptoAPI to 164426ace2 (Node.js GitHub Bot) #57854
• [660d238798] - test: deflake test-buffer-large-size (jakecastelli) #57789
• [ce2274d52f] - test: add test for frame count being 0.5 (Jake Yuesong Li) #57732
• [9d2a09db00] - test: fix the decimal fractions explaination (Jake Yuesong Li) #57732
• [12f4124af8] - Revert "test: add tests for REPL custom evals" (Tobias Nießen) #57793
• [3cdf8ec7c7] - test: add tests for REPL custom evals (Dario Piotrowicz) #57691
• [9af8b92fb4] - test: update expected error message for macOS (Antoine du Hamel) #57742
• [eaec2b5169] - test: fix dangling promise in test_runner no isolation test setup (Jacob Smith) #57595
• [51ded6eaeb] - test: improve test description (jakecastelli) #56943
• [75b9c1cdd8] - test: remove test-macos-app-sandbox flaky designation (Luigi Pinca) #56471
• [72537f5631] - test: remove flaky test-pipe-file-to-http designation (Luigi Pinca) #56472
• [984a472137] - test: remove test-runner-watch-mode-complex flaky designation (Luigi Pinca) #56470
• [23275cc7bc] - test: add test case for util.inspect (Jordan Harband) #55778
• [99e4685636] - test_runner: support mocking json modules (Jacob Smith) #58007
• [8207828aad] - test_runner: recalculate run duration on watch restart (Pietro Marchini) #57786
• [7416a7f35a] - test_runner: match minimum file column to 'all files' (Shima Ryuhei) #57848
• [87ac6cfed7] - test_runner: improve --test-timeout to be per test (jakecastelli) #57672
• [ae08210e37] - tools: ignore V8 tests in CodeQL scans (Rich Trott) #58081
• [25c17ab365] - tools: enable CodeQL config file (Rich Trott) #58036
• [c3d2a1c723] - tools: ignore test directory in CodeQL scans (Rich Trott) #57978
• [d31e630462] - tools: add semver-major release support to release-lint (Antoine du Hamel) #57892
• [3a99975a88] - tools: add codeql nightly (Rafael Gonzaga) #57788
• [77dee41a5d] - tools: edit create-release-proposal workflow to handle pr body length (Elves Vieira) #57841
• [6592803bd0] - tools: add zstd updater to workflow (KASEYA\yahor.siarheyenka) #57831
• [c08349393b] - tools: remove unused osx-pkg-postinstall.sh (Antoine du Hamel) #57667
• [82bb228796] - tools: do not use temp files when merging PRs (Antoine du Hamel) #57790
• [f2cdc98e75] - tools: update gyp-next to 0.20.0 (Node.js GitHub Bot) #57683
• [02d36cd61d] - tools: update doc to new version (Node.js GitHub Bot) #57769
• [74ac98c78e] - tools: bump the eslint group in /tools/eslint with 4 updates (dependabot[bot]) #57721
• [dcba975031] - tools: enable linter in test/fixtures/source-map/output (Antoine du Hamel) #57700
• [b9043c9e9b] - tools: enable linter in test/fixtures/errors (Antoine du Hamel) #57701
• [bbbf49812e] - tools: enable linter in test/fixtures/test-runner/output (Antoine du Hamel) #57698
• [9f1ad3c6da] - tools: enable linter in test/fixtures/eval (Antoine du Hamel) #57699
• [98df74464f] - tools: enable linter on some fixtures file (Antoine du Hamel) #57674
• [cf02cdb799] - tools: update ESLint to 9.23 (Antoine du Hamel) #57673
• [8790348303] - tools: update doc to new version (Node.js GitHub Bot) #57085
• [b1ee186a62] - tools: update doc to new version (Node.js GitHub Bot) #51192
• [be34b5e7fc] - tools: disable doc building when ICU is not available (Antoine du Hamel) #51192
• [6a486347fb] - url: improve canParse() performance for non-onebyte strings (Yagiz Nizipli) #58023
• [7e3503fff1] - util: fix parseEnv handling of invalid lines (Augustin Mauroy) #57798
• [594269fcca] - util: fix formatting of objects with built-in Symbol.toPrimitive (Shima Ryuhei) #57832
• [8ca56a8db8] - util: preserve length of deprecated functions (Livia Medeiros) #57806
• [6add4c56aa] - util: fix parseEnv incorrectly splitting multiple ‘=‘ in value (HEESEUNG) #57421
• [e577618227] - util: inspect: enumerable Symbols no longer have square brackets (Jordan Harband) #55778
• [cb7eb15161] - watch: clarify completion/failure watch mode messages (Dario Piotrowicz) #57926
• [65562127bd] - watch: check parent and child path properly (Jason Zhang) #57425
• [b39fb9aa7f] - win: fix SIGQUIT on ClangCL (Stefan Stojanovic) #57659
• [76c5ea669d] - worker: add ESM version examples to worker docs (fisker Cheung) #57645
• [17965eb33d] - zlib: fix pointer alignment (jhofstee) #57727

• [3c88f3938b] - (SEMVER-MINOR) assert: implement partial error comparison (Ruben Bridgewater) #57370
• [db19a3f9fc] - (SEMVER-MINOR) assert: improve partialDeepStrictEqual (Ruben Bridgewater) #57370
• [1ee5f840b4] - (SEMVER-MINOR) cli: allow --cpu-prof* in NODE_OPTIONS (Carlos Espa) #57018
• [872ee0f2ac] - crypto: update root certificates to NSS 3.108 (Node.js GitHub Bot) #57381
• [03a0f3a56b] - (SEMVER-MINOR) crypto: support --use-system-ca on Windows (Joyee Cheung) #56833
• [94647bbdb2] - (SEMVER-MINOR) crypto: added support for reading certificates from macOS system store (Tim Jacomb) #56599
• [8f7b86a6e7] - deps: update timezone to 2025a (Node.js GitHub Bot) #56876
• [f9f611fb58] - (SEMVER-MINOR) deps,tools: add zstd 1.5.6 (Jan Martin) #52100
• [07a6d5f8cf] - (SEMVER-MINOR) dns: add TLSA record query and parsing (Rithvik Vibhu) #52983
• [d8a83ef2f3] - doc: add @geeksilva97 to collaborators (Edy Silva) #57241
• [6b93ba723b] - (SEMVER-MINOR) module: use synchronous hooks for preparsing in import(cjs) (Joyee Cheung) #55698
• [b2e44a8079] - (SEMVER-MINOR) module: implement module.registerHooks() (Joyee Cheung) #55698
• [dc91ae7471] - (SEMVER-MINOR) process: add execve (Paolo Insogna) #56496
• [bc672fcfdd] - (SEMVER-MINOR) sqlite: allow returning ArrayBufferViews from user-defined functions (René) #56790
• [5edee197ab] - (SEMVER-MINOR) tls: implement tls.getCACertificates() (Joyee Cheung) #57107
• [f9fe0e09ee] - (SEMVER-MINOR) util: expose diff function used by the assertion errors (Giovanni Bucci) #57462
• [673a424180] - (SEMVER-MINOR) v8: add v8.getCppHeapStatistics() method (Aditi) #57146
• [4991e5d826] - (SEMVER-MINOR) zlib: add zstd support (Jan Martin) #52100

• [ea70a379c3] - assert: improve partialDeepStrictEqual performance (Ruben Bridgewater) #57509
• [2b419d7e79] - (SEMVER-MINOR) assert: implement partial error comparison (Ruben Bridgewater) #57370
• [d817c17fd7] - (SEMVER-MINOR) assert: improve partialDeepStrictEqual (Ruben Bridgewater) #57370
• [7af0440073] - assert: improve myers diff performance (Giovanni Bucci) #57279
• [01cf5fb871] - (SEMVER-MINOR) assert,util: improve performance (Ruben Bridgewater) #57370
• [a58842cee4] - (SEMVER-MINOR) benchmark: adjust assert runtimes (Ruben Bridgewater) #57370
• [b20b3697aa] - (SEMVER-MINOR) benchmark: skip running some assert benchmarks by default (Ruben Bridgewater) #57370
• [ec5570fd1e] - (SEMVER-MINOR) benchmark: add assert partialDeepStrictEqual benchmark (Ruben Bridgewater) #57370
• [b991bf4ca6] - benchmark: add a warmup on bench-openSync (Elves Vieira) #57051
• [4a455bc806] - build: fix update-wpt workflow (Jonas) #57468
• [6ec397e61c] - build: fix compatibility with V8's depot_tools (Richard Lau) #57330
• [475aaca336] - build: print 'Formatting Markdown...' for long task markdown formatting (1ilsang) #57108
• [73fced7a97] - build: fix GN build failure (Cheng) #57013
• [af05f91425] - build: fix GN build of uv (Cheng) #56955
• [fd3053e947] - build: gyp exclude libm linking on macOS (deepak1556) #56901
• [5ec6b9a50f] - build: remove explicit linker call to libm on macOS (deepak1556) #56901
• [a893da9be7] - build: link with Security.framework in GN build (Cheng) #56895
• [02cd8e0a50] - build: do not put commands in sources variables (Cheng) #56885
• [73dc8c2140] - build: add double quotes around <(python) (Luigi Pinca) #56826
• [65a3b5f73c] - build: add build option suppress_all_error_on_warn (Michael Dawson) #56647
• [424aacc942] - build,win: disable node pch with ccache (Stefan Stojanovic) #57224
• [901685c723] - build,win: enable ccache (Stefan Stojanovic) #56847
• [79987676c1] - cli: clarify --cpu-prof-name allowed values (Eugenio Ceschia) #57433
• [503d4237aa] - (SEMVER-MINOR) cli: allow --cpu-prof* in NODE_OPTIONS (Carlos Espa) #57018
• [ada572b733] - crypto: ensure expected JWK alg in SubtleCrypto.importKey RSA imports (Filip Skokan) #57450
• [7e5aabde55] - crypto: update root certificates to NSS 3.108 (Node.js GitHub Bot) #57381
• [7ea6ac1e09] - crypto: add support for intermediate certs in --use-system-ca (Tim Jacomb) #57164
• [44b19ec534] - crypto: support --use-system-ca on non-Windows and non-macOS (Joyee Cheung) #57009
• [e21d126438] - crypto: fix missing OPENSSL_NO_ENGINE guard (Shelley Vohr) #57012
• [2fdf82b357] - crypto: cleanup root certificates and skip PEM deserialization (Joyee Cheung) #56999
• [03a0f3a56b] - (SEMVER-MINOR) crypto: support --use-system-ca on Windows (Joyee Cheung) #56833
• [bbdb10bc2c] - crypto: fix X509* leak in --use-system-ca (Joyee Cheung) #56832
• [5470cab6d3] - crypto: add api to get openssl security level (Michael Dawson) #56601
• [94647bbdb2] - (SEMVER-MINOR) crypto: added support for reading certificates from macOS system store (Tim Jacomb) #56599
• [caf81ca549] - debugger: fix behavior of plain object exec in debugger repl (Dario Piotrowicz) #57498
• [1d703fe220] - deps: update c-ares to v1.34.5 (Node.js GitHub Bot) #57792
• [98457dfea3] - deps: update undici to 6.21.2 (Matteo Collina) #57442
• [4a852ba11b] - deps: V8: cherry-pick c172ffc5bf54 (Choongwoo Han) #57437
• [54a12e0bcc] - deps: update googletest to 0bdccf4 (Node.js GitHub Bot) #57380
• [2e350963e5] - deps: update acorn to 8.14.1 (Node.js GitHub Bot) #57382
• [95e5d01c25] - deps: update amaro to 0.4.1 (marco-ippolito) #57121
• [ef216deb05] - deps: update amaro to 0.3.2 (marco-ippolito) #56916
• [4ef4d6ecf6] - deps: update amaro to 0.3.1 (Node.js GitHub Bot) #56785
• [a8bf5ef4a7] - deps: update simdjson to 3.12.2 (Node.js GitHub Bot) #57084
• [0bd612bb32] - deps: update archs files for openssl-3.0.16 (Node.js GitHub Bot) #57335
• [7d65f79306] - deps: upgrade openssl sources to quictls/openssl-3.0.16 (Node.js GitHub Bot) #57335
• [5c88c52491] - deps: update corepack to 0.32.0 (Node.js GitHub Bot) #57265
• [fa04bf4999] - deps: update gyp file for ngtcp2 1.11.0 (Richard Lau) #57225
• [ca6b07258d] - deps: update cjs-module-lexer to 2.1.0 (Node.js GitHub Bot) #57180
• [0a72b16fe1] - deps: update ngtcp2 to 1.11.0 (Node.js GitHub Bot) #57179
• [600fb41f54] - deps: update sqlite to 3.49.1 (Node.js GitHub Bot) #57178
• [7eb3b44010] - deps: update zlib to 1.3.0.1-motley-788cb3c (Node.js GitHub Bot) #56655
• [257d22e181] - deps: update sqlite to 3.49.0 (Node.js GitHub Bot) #56654
• [53a7bfce01] - deps: V8: cherry-pick 9ab40592f697 (Levi Zim) #56781
• [636f65cb1a] - deps: update cjs-module-lexer to 2.0.0 (Michael Dawson) #56855
• [8f7b86a6e7] - deps: update timezone to 2025a (Node.js GitHub Bot) #56876
• [db31276bfa] - deps: update simdjson to 3.12.0 (Node.js GitHub Bot) #56874
• [d1d58d6198] - deps: update googletest to e235eb3 (Node.js GitHub Bot) #56873
• [05b3dff275] - deps: update simdjson to 3.11.6 (Node.js GitHub Bot) #56250
• [f9f611fb58] - (SEMVER-MINOR) deps,tools: add zstd 1.5.6 (Jan Martin) #52100
• [ef212a41a7] - dns: restore dns query cache ttl (Ethan Arrowood) #57640
• [7a10b01e97] - dns: remove redundant code using common variable (Deokjin Kim) #57386
• [bc2603f086] - (SEMVER-MINOR) dns: add TLSA record query and parsing (Rithvik Vibhu) #52983
• [38a2e5d60b] - doc: add gurgunday as triager (Gürgün Dayıoğlu) #57594
• [b7ac0bd129] - doc: clarify behaviour of node-api adjust function (Michael Dawson) #57463
• [fa834896c8] - doc: remove Corepack documentation (Antoine du Hamel) #57635
• [8988173286] - doc: remove mention of --require not supporting ES modules (Huáng Jùnliàng) #57620
• [3a7d179dbd] - doc: mention reports should align with Node.js CoC (Rafael Gonzaga) #57607
• [983c5087f6] - doc: add section stating that very stale PRs should be closed (Dario Piotrowicz) #57541
• [f4e1f702d4] - doc: add bjohansebas as triager (Sebastian Beltran) #57564
• [9b7fd6b076] - doc: update support channels (Claudio W.) #57538
• [ef624aff55] - doc: remove cryptoStream API reference (Jonas) #57579
• [4a2afc255a] - doc: module resolution pseudocode corrections (Marcel Laverdet) #57080
• [ee5059426d] - doc: add history entry for DEP0190 in child_process.md (Antoine du Hamel) #57544
• [4deebb4fca] - doc: remove deprecated pattern in child_process.md (Antoine du Hamel) #57568
• [6cd7b37d9c] - doc: mark multiple experimental APIS as stable (James M Snell) #57510
• [c2f1fa0928] - doc: remove mertcanaltin from Triagers (Mert Can Altin) #57531
• [9b6047e520] - doc: recommend watching the collaborators repo in the onboarding doc (Darshan Sen) #57527
• [bf1e297079] - doc: remove mention of visa fees from onboarding doc (Darshan Sen) #57526
• [1041331094] - doc: deprecate passing args to spawn and execFile (Antoine du Hamel) #57389
• [06994d5a75] - doc: remove some inconsistencies in deprecations.md (Antoine du Hamel) #57512
• [707f851ba3] - doc: run license-builder (github-actions[bot]) #57511
• [a7793195d6] - doc: add new writing-docs contributing md (Dario Piotrowicz) #57502
• [30d4a43b3d] - doc: add node.js streams references to Web Streams doc (Dario Piotrowicz) #57393
• [e08365980b] - doc: prefer to sign commits under nodejs repository (Rafael Gonzaga) #57311
• [c35e1f9048] - doc: fixed the incorrect splitting of multiple words (letianpailove) #57454
• [3e1f3bc2bb] - doc: add review guidelines for collaborator nominations (Antoine du Hamel) #57449
• [fef3f82a41] - doc: add history info for --use-system-ca (Darshan Sen) #57432
• [96afdf949d] - doc: remove typo YAML snippet from tls.getCACertificates doc (Darshan Sen) #57459
• [800d61d47e] - doc: fix typo in sqlite.md (Tobias Nießen) #57473
• [4876aee775] - doc: explicit mention arbitrary code execution as a vuln (Rafael Gonzaga) #57426
• [2dd72c658f] - doc: update maintaining-openssl.md for openssl (Richard Lau) #57413
• [a49fd31f04] - doc: add missing deprecated badges in fs.md (Yukihiro Hasegawa) #57384
• [3a4ed77674] - doc: add note about sync nodejs-private branches (Rafael Gonzaga) #57404
• [1025e6dc7c] - doc: update Xcode version used for arm64 and pkg (Michaël Zasso) #57104
• [77b9e04a70] - doc: improve type stripping documentation (Marco Ippolito) #56916
• [3a75e8410d] - doc: specificy support for erasable ts syntax (Marco Ippolito) #56916
• [69f12f9686] - doc: make first parameter optional in util.getCallSites (Deokjin Kim) #57387
• [2b4e737ffb] - doc: fix usage of module.registerSync in comment (Timo Kössler) #57328
• [f320593958] - doc: add Darshan back as voting TSC member (Michael Dawson) #57402
• [2b7765469a] - doc: revise webcrypto.md types, interfaces, and added versions (Filip Skokan) #57376
• [649828c74a] - doc: add info on how project manages social media (Michael Dawson) #57318
• [2a2e1cfd71] - doc: revise tsconfig.json note (Steven) #57353
• [17883b1d46] - doc: use more clear name in getSystemErrorMessage's example (ikuma-t) #57310
• [7feed9989b] - doc: recommend setting noEmit: true in tsconfig.json (Steven) #57320
• [fe707ab162] - doc: ping nodejs/tsc for each security pull request (Rafael Gonzaga) #57309
• [f3c58ab693] - doc: fix Windows ccache section position (Stefan Stojanovic) #57326
• [e69170bacd] - doc: update node-api version matrix (Chengzhong Wu) #57287
• [0bc1fd2245] - doc: recommend erasableSyntaxOnly in ts docs (Rob Palmer) #57271
• [068013744e] - doc: clarify path.isAbsolute is not path traversal mitigation (Eric Fortis) #57073
• [238b0e856e] - doc: fix rendering of DEP0174 description (David Sanders) #56835
• [db0bcefd14] - doc: add 1ilsang to triage team (1ilsang) #57183
• [52a593feab] - doc: add @geeksilva97 to collaborators (Edy Silva) #57241
• [89f4475e32] - doc: add missing assert return types (Colin Ihrig) #57219
• [62b6d94c03] - doc: add streamResetBurst and streamResetRate (Sujal Raj) #57195
• [f150017e70] - doc: add esm examples to node:util (Alfredo González) #56793
• [99465ffa9c] - doc: update options to filehandle.appendFile() (Hasegawa-Yukihiro) #56972
• [6242520a90] - doc: add additional caveat for fs.watch (Michael Dawson) #57150
• [19cda4791a] - doc: fix typo in Windows building instructions (Tim Jacomb) #57158
• [ef206add59] - doc: fix web.libera.chat link in pull-requests.md (Samuel Bronson) #57076
• [7243c1713d] - doc: remove buffered flag from performance hooks examples (Pavel Romanov) #52607
• [617fe71f67] - doc: fix 'introduced_in' version in typescript module (1ilsang) #57109
• [6cc15b8dc9] - doc: fix link and history of SourceMap sections (Antoine du Hamel) #57098
• [6be8189041] - doc: add module namespace object links (Dario Piotrowicz) #57093
• [8611c4a3ea] - doc: disambiguate pseudo-code statement (Dario Piotrowicz) #57092
• [79da145a55] - doc: update clang-cl on Windows building guide (Joyee Cheung) #57087
• [845eaf91be] - doc: fix wrong articles used to address modules (Dario Piotrowicz) #57090
• [42c5e23eb1] - doc: modules.md: fix distance definition (Alexander “weej” Jones) #57046
• [bda851aaa3] - doc: fix wrong verb form (Dario Piotrowicz) #57091
• [64e13fd36e] - doc: fix transpiler loader hooks documentation (Joyee Cheung) #57037
• [51494d8b78] - doc: add a note about require('../common') in testing documentation (Aditi) #56953
• [053b128e9c] - doc: recommend writing tests in new files and including comments (Joyee Cheung) #57028
• [a20c62a00c] - doc: improve documentation on argument validation (Aditi) #56954
• [2921658813] - doc: buffer: fix typo on Buffer.copyBytesFrom( offset option (tpoisseau) #57015
• [6f4ab1c9b2] - doc: update cleanup to trust on vuln db automation (Rafael Gonzaga) #57004
• [5285facb3e] - doc: move stability index after history section for consistency (Antoine du Hamel) #56997
• [a7646e17ff] - doc: add signal to filehandle.writeFile() options (Yukihiro Hasegawa) #56804
• [ba031089e6] - doc: run license-builder (github-actions[bot]) #56985
• [afa6f93a32] - doc: update history of stream.Readable.toWeb() (Jimmy Leung) #56928
• [cc644de126] - doc: make MDN links to global classes more consistent (Antoine du Hamel) #56924
• [93bba4eee1] - doc: make MDN links to global classes more consistent in assert.md (Antoine du Hamel) #56920
• [ad03c85f98] - doc: make MDN links to global classes more consistent (Antoine du Hamel) #56923
• [96c2a90dee] - doc: make MDN links to global classes more consistent in util.md (Antoine du Hamel) #56922
• [6bb73c0745] - doc: make MDN links to global classes more consistent in buffer.md (Antoine du Hamel) #56921
• [824cf35475] - doc: update post sec release process (Rafael Gonzaga) #56907
• [027749eb17] - doc: update websocket link to avoid linking to self (Chengzhong Wu) #56897
• [5dcb9d632b] - doc: mark --env-file-if-exists flag as experimental (Juan José) #56893
• [4f6d751bf5] - doc: fix typo in cjs example of util.styleText (Deokjin Kim) #56769
• [313d9db7a5] - doc: clarify sqlite user-defined function behaviour (René) #56786
• [eff42956c4] - doc: correct customization hook types & clarify descriptions (Jacob Smith) #56454
• [64180421c2] - events: getMaxListeners detects 0 listeners (Matthew Aitken) #56807
• [2de27787b4] - fs: apply exclude function to root path (Rich Trott) #57420
• [b6df9e350a] - fs: handle UV_ENOTDIR in fs.statSync with throwIfNoEntry provided (Juan José Arboleda) #56996
• [14b2d496a0] - fs: make FileHandle.readableWebStream always create byte streams (Ian Kerins) #55461
• [10d2f1d898] - http: coerce content-length to number (Marco Ippolito) #57458
• [9192b7fa25] - http: be more generational GC friendly (ywave620) #56767
• [1cf98a8788] - inspector: convert event params to protocol without json (Chengzhong Wu) #57027
• [6dcad868bb] - inspector: skip promise hook in the inspector async hook (Joyee Cheung) #57148
• [787e93f75a] - inspector: add Network.Initiator in inspector protocol (Chengzhong Wu) #56805
• [c7c04d0dc8] - inspector: fix GN build (Cheng) #56798
• [177da9c3c3] - inspector: fix StringUtil::CharacterCount for unicodes (Chengzhong Wu) #56788
• [1b5418eeea] - lib: add warning when binding inspector to public IP (Demian Parkhomenko) #55736
• [cc4d33842b] - lib: limit split function calls to prevent excessive array length (Gürgün Dayıoğlu) #57501
• [0546612d1d] - lib: make getCallSites sourceMap option truly optional (James M Snell) #57388
• [d7d54e6bf3] - lib: optimize priority queue (Gürgün Dayıoğlu) #57100
• [62761c73a1] - lib: fixup incorrect argument order in assertEncoding (James M Snell) #57177
• [5dce55c376] - meta: add some clarification to the nomination process (James M Snell) #57503
• [a2a4cf1d95] - meta: remove collaborator self-nomination (Rich Trott) #57537
• [244f74b844] - meta: edit collaborator nomination process (Antoine du Hamel) #57483
• [dec204bb3f] - meta: move ovflowd to emeritus (Claudio W.) #57443
• [c0b8b84384] - meta: bump codecov/codecov-action from 5.3.1 to 5.4.0 (dependabot[bot]) #57257
• [14cbe292da] - meta: bump github/codeql-action from 3.28.8 to 3.28.10 (dependabot[bot]) #57254
• [69d2dd69e2] - meta: bump ossf/scorecard-action from 2.4.0 to 2.4.1 (dependabot[bot]) #57253
• [5f3428ded6] - meta: move RaisinTen back to collaborators, triagers and SEA champion (Darshan Sen) #57292
• [3eea8c72fc] - meta: bump actions/download-artifact from 4.1.8 to 4.1.9 (dependabot[bot]) #57260
• [2508893edb] - meta: bump peter-evans/create-pull-request from 7.0.6 to 7.0.7 (dependabot[bot]) #57259
• [fc09523f44] - meta: bump step-security/harden-runner from 2.10.4 to 2.11.0 (dependabot[bot]) #57258
• [b162402440] - meta: bump actions/cache from 4.2.0 to 4.2.2 (dependabot[bot]) #57256
• [f781be1332] - meta: bump actions/upload-artifact from 4.6.0 to 4.6.1 (dependabot[bot]) #57255
• [7934ad9fc0] - meta: bump actions/setup-python from 5.3.0 to 5.4.0 (dependabot[bot]) #56867
• [eb4fb9ce90] - meta: bump peter-evans/create-pull-request from 7.0.5 to 7.0.6 (dependabot[bot]) #56866
• [a14e7f1cc4] - meta: bump mozilla-actions/sccache-action from 0.0.6 to 0.0.7 (dependabot[bot]) #56865
• [6c8a9e3d0d] - meta: bump codecov/codecov-action from 5.0.7 to 5.3.1 (dependabot[bot]) #56864
• [f438c27cbf] - meta: bump step-security/harden-runner from 2.10.2 to 2.10.4 (dependabot[bot]) #56863
• [24b7fcb153] - meta: bump actions/cache from 4.1.2 to 4.2.0 (dependabot[bot]) #56862
• [a0afc47988] - meta: bump actions/stale from 9.0.0 to 9.1.0 (dependabot[bot]) #56860
• [8abf4e5d7d] - meta: bump github/codeql-action from 3.27.5 to 3.28.8 (dependabot[bot]) #56859
• [c5bff736e9] - meta: add CODEOWNERS for SQLite (Colin Ihrig) #57147
• [fd2abaa088] - meta: update last name for jkrems (Jan Martin) #57006
• [2383f00aae] - meta: bump actions/upload-artifact from 4.4.3 to 4.6.0 (dependabot[bot]) #56861
• [35b3140d03] - meta: bump actions/setup-node from 4.1.0 to 4.2.0 (dependabot[bot]) #56868
• [815fcef73d] - meta: move one or more collaborators to emeritus (Node.js GitHub Bot) #56889
• [08001127a2] - meta: add @nodejs/url as codeowner (Chengzhong Wu) #56783
• [3ceda2a035] - module: handle cached linked async jobs in require(esm) (Joyee Cheung) #57187
• [4c29cc7e6b] - module: add dynamic file-specific ESM warnings (Mert Can Altin) #56628
• [d1845edd21] - module: improve error message from asynchronicity in require(esm) (Joyee Cheung) #57126
• [41fa7d3c21] - module: allow omitting context in synchronous next hooks (Joyee Cheung) #57056
• [deddecce3a] - module: fix require.resolve() crash on non-string paths (Aditi) #56942
• [926b887534] - module: fixing url change in load sync hook chain (Vitalii Akimov) #56402
• [6b93ba723b] - (SEMVER-MINOR) module: use synchronous hooks for preparsing in import(cjs) (Joyee Cheung) #55698
• [b2e44a8079] - (SEMVER-MINOR) module: implement module.registerHooks() (Joyee Cheung) #55698
• [e79e67f6dc] - net: validate non-string host for socket.connect (Daeyeon Jeong) #57198
• [e23056212e] - net: replace brand checks with identity checks (Yagiz Nizipli) #57341
• [9c0d5e140b] - net: emit an error when custom lookup resolves to a non-string address (Edy Silva) #57192
• [2ce79787de] - (SEMVER-MINOR) process: add execve (Paolo Insogna) #56496
• [712db2232c] - readline: add support for Symbol.dispose (Antoine du Hamel) #57276
• [55fb81c0f1] - readline: fix unresolved promise on abortion (Daniel Venable) #54030
• [dfcd9b1ac2] - sea: suppress builtin warning with disableExperimentalSEAWarning option (koooge) #57086
• [bd5c90654a] - sqlite: add support for unknown named parameters (Colin Ihrig) #57552
• [ec571382a4] - sqlite: add DatabaseSync.prototype.isOpen (Colin Ihrig) #57522
• [bb3bbed126] - sqlite: add DatabaseSync.prototype[Symbol.dispose]() (Colin Ihrig) #57506
• [6067bea027] - sqlite: restore changes from #55373 (Colin Ihrig) #56908
• [bc672fcfdd] - (SEMVER-MINOR) sqlite: allow returning ArrayBufferViews from user-defined functions (René) #56790
• [227603dc30] - sqlite,test,doc: allow Buffer and URL as database location (Edy Silva) #56991
• [9dd324467a] - src: cleanup aliased_buffer.h (Mohammed Keyvanzadeh) #57395
• [45a2b8532b] - src: do not pass nullptr to std::string ctor (Charles Kerr) #57354
• [854370a06c] - src: fix process exit listeners not receiving unsettled tla codes (Dario Piotrowicz) #56872
• [f7fb259193] - src: refactor SubtleCrypto algorithm and length validations (Filip Skokan) #57319
• [c7bcc2d6c8] - src: allow embedder customization of OOMErrorHandler (Shelley Vohr) #57325
• [fbd8862156] - src: use Maybe<void> in ProcessEmitWarningSync (Daeyeon Jeong) #57250
• [04de550289] - src: make even more improvements to error handling (James M Snell) #57264
• [f1c5e46f89] - src: use cached emit v8::String (Daeyeon Jeong) #57249
• [65b8e12689] - src: refactor SubtleCrypto algorithm and length validations (Filip Skokan) #57273
• [b6091a8b21] - src: make more error handling improvements (James M Snell) #57262
• [3bd8a6c76e] - src: fix typo in comment (Antoine du Hamel) #57291
• [f7e39385ae] - src: improve error handling in node_messaging.cc (James M Snell) #57211
• [1bb561bede] - src: improve error handling in tty_wrap.cc (James M Snell) #57211
• [567d321a40] - src: improve error handling in tcp_wrap.cc (James M Snell) #57211
• [f8bee871f7] - src: fix ThrowInvalidURL call in PathToFileURL (Daniel M Brasil) #57141
• [817f7d0e2e] - src: improve error handling in buffer and dotenv (James M Snell) #57189
• [11ef7f9d9c] - src: improve error handling in module_wrap (James M Snell) #57188
• [3b08d718b1] - src: improve error handling in spawn_sync (James M Snell) #57185
• [9221c2ad87] - src: detect whether the string is one byte representation or not (theweipeng) #56147
• [e323694772] - src: fix crash when lazy getter is invoked in a vm context (Chengzhong Wu) #57168
• [9363b05a91] - src: do not format single string argument for THROW_ERR_* (Joyee Cheung) #57126
• [5d6a1bc35b] - src: move instead of copy shared pointer in node_blob (Michaël Zasso) #57120
• [5dab48fd9f] - src: replace NewFromUtf8 with OneByteString where appropriate (James M Snell) #57096
• [0fe60b478d] - src: port defineLazyProperties to native code (Antoine du Hamel) #57081
• [792959db1d] - src: improve error handling in node_blob (James M Snell) #57078
• [e05e2cfb1e] - src: fix accessing empty string (Cheng) #57014
• [619e52ce8d] - src: lock the isolate properly in IsolateData destructor (Joyee Cheung) #57031
• [844a4a884d] - src: add self-assigment memcpy checks (Burkov Egor) #56986
• [0d1e79740f] - src: improve node::Dotenv trimming (Dario Piotrowicz) #56983
• [50f164e23b] - src: improve error handling in string_bytes/decoder (James M Snell) #56978
• [93aa4393a4] - src: improve error handling in process_wrap (James M Snell) #56977
• [c1c824e38d] - src: use args.This() in zlib (Michaël Zasso) #56988
• [0a8e474bdc] - src: add nullptr handling for NativeKeyObject (Burkov Egor) #56900
• [1ea6198a5a] - src: disallow copy/move fns/constructors (Yagiz Nizipli) #56811
• [e4100853cb] - src: add a hard dependency v8_inspector_headers (Chengzhong Wu) #56805
• [a1f92898c0] - src: improve error handling in encoding_binding.cc (James M Snell) #56915
• [dee8793d94] - src: improve error handling in permission.cc (James M Snell) #56904
• [f41bc4cfd7] - src: improve error handling in node_sqlite (James M Snell) #56891
• [e4df6181bf] - src: improve error handling in node_os by removing ToLocalChecked (James M Snell) #56888
• [2c96e7a32c] - src: improve error handling in node_url (James M Snell) #56886
• [36926ae8d8] - src: add check for Bignum in GroupOrderSize (Burkov Egor) #56702
• [a68f127a30] - src: reduce string allocations on sqlite (Yagiz Nizipli) #57227
• [e41b1735f1] - stream: fix sizeAlgorithm validation in WritableStream (Daeyeon Jeong) #57280
• [3bc877dc5c] - test: add more number cases for buffer.indexOf (Meghan Denny) #57200
• [cac9a4e832] - test: update parallel/test-tls-dhe for OpenSSL 3.5 (Richard Lau) #57477
• [3082ab3a64] - test: module syntax should throw (Marco Ippolito) #57121
• [9b0dfc9a44] - test: update snapshots for amaro v0.3.2 (Marco Ippolito) #56916
• [2defc35ea8] - test: test runner run plan (Pietro Marchini) #57304
• [ccb3df70be] - test: update WPT for WebCryptoAPI to edd42c005c (Node.js GitHub Bot) #57365
• [528103c5d0] - test: simplify test-tls-connect-abort-controller.js (Yagiz Nizipli) #57338
• [17e21e6eb5] - test: use assert.match in test-esm-import-meta (Antoine du Hamel) #57290
• [77bbee5184] - test: update compression wpt (Yagiz Nizipli) #56960
• [4fe88f8f53] - Revert "test: temporary remove resource check from fs read-write" (Rafael Gonzaga) #56906
• [766efc7758] - test: more common.mustNotCall in net, tls (Meghan Denny) #57246
• [562e635e11] - test: swap assert.strictEqual() parameters (Luigi Pinca) #57217
• [64fdfd5622] - test: assert write return values in buffer-bigint64 (Meghan Denny) #57212
• [dd538e7cf1] - test: allow embedder running async context frame test (Shelley Vohr) #57193
• [937bbeb2b6] - test: resolve race condition in test-net-write-fully-async-* (Matteo Collina) #57022
• [32df9f27d8] - test: add doAppendAndCancel test (Hasegawa-Yukihiro) #56972
• [90c98df258] - test: fix test-without-async-context-frame.mjs in debug mode (Joyee Cheung) #57034
• [974817c9fc] - test: make eval snapshot comparison more flexible (Shelley Vohr) #57020
• [09741cd129] - test: simplify test-http2-client-promisify-connect-error (Luigi Pinca) #57144
• [89f3feb364] - test: improve error output of test-http2-client-promisify-connect-error (Antoine du Hamel) #57135
• [25751eba4d] - test: add case for unrecognised fields within pjson "exports" (Jacob Smith) #57026
• [bf0b9fa7c0] - test: remove unnecessary assert requiring from tests (Dario Piotrowicz) #57008
• [8cfb2df466] - test: reduce flakiness on test-net-write-fully-async-buffer (Yagiz Nizipli) #56971
• [43c8c101da] - test: remove flakiness on macOS test (Yagiz Nizipli) #56971
• [bd47178f7f] - test: improve timeout duration for debugger events (Yagiz Nizipli) #56970
• [65694aa2fd] - test: remove unnecessary syscall to cpuinfo (Yagiz Nizipli) #56968
• [5633c4b2df] - test: update webstorage wpt (Yagiz Nizipli) #56963
• [2244a2776a] - test: execute shell directly for refresh() (Yagiz Nizipli) #55051
• [afae4b1216] - test: change jenkins reporter (Carlos Espa) #56808
• [b26592a7c4] - test: fix race condition in test-child-process-bad-stdio (Colin Ihrig) #56845
• [72c2279649] - test: adjust check to use OpenSSL sec level (Michael Dawson) #56819
• [9551b27651] - test: test-crypto-scrypt.js doesn't need internals (Meghan Denny) #56673
• [3095db84be] - test: set test-fs-cp as flaky (Stefan Stojanovic) #56799
• [31f98d7ccd] - test: search cctest files (Chengzhong Wu) #56791
• [267f17d5f6] - test: convert test_encoding_binding.cc to a JS test (Chengzhong Wu) #56791
• [a875d7bdd1] - test: test-crypto-prime.js doesn't need internals (Meghan Denny) #56675
• [85482d69c6] - test: temporary remove resource check from fs read-write (Rafael Gonzaga) #56789
• [ec63d72f16] - test: mark test-without-async-context-frame flaky on windows (James M Snell) #56753
• [f16acc8521] - test: remove unnecessary code (Luigi Pinca) #56784
• [0573c19a97] - test: mark test-esm-loader-hooks-inspect-wait flaky (Richard Lau) #56803
• [48e0fd3f13] - test: update WPT for url to a23788b77a (Node.js GitHub Bot) #56779
• [642959b87f] - test: remove duplicate error reporter from ci (Carlos Espa) #56739
• [2023237b4e] - test,crypto: make tests work for BoringSSL (Shelley Vohr) #57021
• [1b33b976ec] - test_runner: refactor testPlan counter increse (Pietro Marchini) #56765
• [d860f2bf42] - test_runner: differentiate test types in enqueue dequeue events (Eddie Abbondanzio) #54049
• [993bab646c] - test_runner: print formatted errors on summary (Pietro Marchini) #56911
• [3ed3ba438f] - test_runner: allow special characters in snapshot keys (Carlos Espa) #57017
• [d1da9a3a2f] - timers: optimize timer functions with improved argument handling (Gürgün Dayıoğlu) #57072
• [44aa13990a] - timers: remove unnecessary allocation of _onTimeout (Gürgün Dayıoğlu) #57497
• [401b965977] - timers: remove unused parameter from insertGuarded (Gürgün Dayıoğlu) #57251
• [9eac9c02c9] - timers: simplify the compareTimersLists function (Gürgün Dayıoğlu) #57110
• [01215af350] - tls: remove unnecessary type check on normalize (Yagiz Nizipli) #57336
• [f5e2b12a60] - (SEMVER-MINOR) tls: implement tls.getCACertificates() (Joyee Cheung) #57107
• [7a777cdb58] - tools: fix WPT update cron string (Antoine du Hamel) #57665
• [c6d90dbf9b] - tools: remove stalled label on unstalled issues and PRs (Rich Trott) #57630
• [96f7f64602] - tools: update sccache to support GH cache changes (Michaël Zasso) #57573
• [0b87027520] - tools: bump @babel/helpers from 7.26.9 to 7.26.10 in /tools/eslint (dependabot[bot]) #57444
• [7d561eb90c] - tools: add config subspace (Marco Ippolito) #57239
• [46efdbf59f] - tools: import rather than require ESLint plugins (Michaël Zasso) #57315
• [502bfaf876] - tools: switch back to official OpenSSL (Richard Lau) #57301
• [ea821f419d] - tools: revert to use @stylistic/eslint-plugin-js v3 (Joyee Cheung) #57314
• [bb857615d3] - tools: add more details about rolling inspector_protocol (Chengzhong Wu) #57167
• [3f29d39c1b] - tools: bump the eslint group in /tools/eslint with 5 updates (dependabot[bot]) #57261
• [b3caac83d4] - tools: remove deps/zlib/GN-scraper.py (Chengzhong Wu) #57238
• [ace99ffe79] - tools: run Linux tests on GitHub arm64 runners as well (Dennis Ameling) #57162
• [e65e6269b7] - tools: consolidate 'introduced_in' check for docs (1ilsang) #57109
• [890841e64b] - tools: do not run major-release workflow on forks (Rich Trott) #57064
• [e3f86c5a0c] - tools: fix release URL computation in update-root-certs.mjs (Joyee Cheung) #56843
• [280316f773] - tools: add support for import source syntax in linter (Antoine du Hamel) #56992
• [998b2ae3cd] - tools: bump eslint version (dependabot[bot]) #56869
• [ca4121b95a] - tools: remove test-asan/ubsan workflows (Michaël Zasso) #56823
• [866ac37255] - tools: run macOS test workflow with Xcode 16.1 (Michaël Zasso) #56831
• [55ca46ad8e] - tools: update sccache and sccache-action (Michaël Zasso) #56815
• [be9c1c93a8] - tools: fix license-builder for inspector_protocol (Michaël Zasso) #56814
• [6dab980fab] - typings: fix ImportModuleDynamicallyCallback return type (Chengzhong Wu) #57160
• [e301098854] - util: avoid run debug when enabled is false (fengmk2) #57494
• [17016d7722] - (SEMVER-MINOR) util: expose diff function used by the assertion errors (Giovanni Bucci) #57462
• [42b9e19f6b] - util: enforce shouldColorize in styleText array arg (Marco Ippolito) #56722
• [5ed6d8be40] - (SEMVER-MINOR) v8: add v8.getCppHeapStatistics() method (Aditi) #57146
• [c06d218b23] - win,build: add option to enable Control Flow Guard (Hüseyin Açacak) #56605
• [8202211140] - win,test: disable test case failing with ClangCL (Stefan Stojanovic) #57397
• [1a12b4c119] - zlib: use modern class syntax for zstd classes (Yagiz Nizipli) #56965
• [f9b3680268] - zlib: make all zstd functions experimental (Yagiz Nizipli) #56964
• [4991e5d826] - (SEMVER-MINOR) zlib: add zstd support (Jan Martin) #52100